OAuth 2.0

OAuth 2.0 logoOAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 supersedes the work done on the original OAuth protocol created in 2006. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices. This specification is being developed within the IETF OAuth WG.

Questions, suggestions and protocol changes should be discussed on the mailing list.

OAuth 2.0 Core

OAuth 2.0 Extensions

Community Resources

Protocols Built on OAuth 2.0

Code and Services


See more information on OAuth 1.0 and 1.0a.