OAuth 2.0

E35337

IETF standard authorization framework internet standard

OAuth 2.0 is an industry-standard authorization framework that enables applications to obtain limited access to user resources on HTTP services without exposing user credentials.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (8)

Label	Occurrences
OAuth 2.0 canonical	19
OAuth	2
Google account OAuth	1
OAuth 2.0 (later versions)	1
OAuth 2.0 Authorization Framework	1
OAuth 2.0 authorization framework	1
OAuth2	1
The OAuth 2.0 Authorization Framework	1

Statements (47)

Predicate	Object
instanceOf	IETF standard ⓘ authorization framework ⓘ internet standard ⓘ
allows	third-party applications to access APIs on behalf of users ⓘ
BearerTokenSpecifiedIn	RFC 6750 ⓘ
category	computer security protocol ⓘ web authorization protocol ⓘ
definesEndpoint	authorization endpoint ⓘ redirection endpoint ⓘ token endpoint ⓘ
definesGrantType	authorization code grant ⓘ client credentials grant ⓘ implicit grant ⓘ resource owner password credentials grant ⓘ
definesRole	authorization server ⓘ client ⓘ resource owner ⓘ resource server ⓘ
designedFor	authorization ⓘ
enables	delegated access to protected resources ⓘ limited access without sharing user credentials ⓘ
influenced	OpenID Connect ⓘ
isExtendedBy	OpenID Connect ⓘ surface form: OpenID Connect Core
isUsedBy	Facebook ⓘ surface form: Facebook APIs GitHub ⓘ surface form: GitHub APIs Google APIs ⓘ Microsoft APIs ⓘ
minimizes	exposure of user credentials ⓘ
notDesignedFor	authentication ⓘ
operatesOver	HTTP ⓘ
publishedYear	2012 ⓘ
replaces	OAuth 1.0 ⓘ
requires	user authorization for client access ⓘ
securityDependsOn	TLS ⓘ
separates	resource server from authorization server ⓘ
standardizedBy	Internet Engineering Task Force ⓘ
standardizedIn	RFC 6749 ⓘ RFC 6750 ⓘ
supports	JavaScript applications ⓘ extension grant types ⓘ machine-to-machine applications ⓘ native applications ⓘ scopes for fine-grained access control ⓘ web applications ⓘ
tokenTypeDefinedIn	Bearer token ⓘ
uses	access tokens ⓘ refresh tokens ⓘ

Referenced by (27)

Full triples — surface form annotated when it differs from this entity's canonical label.

Google Workspace → supportsStandard → OAuth 2.0 ⓘ

Exchange Online → supportsAuthentication → OAuth 2.0 ⓘ

Microsoft account → authenticationProtocol → OAuth 2.0 ⓘ

Google Play Games → loginMethod → OAuth 2.0 ⓘ

this entity surface form: Google account OAuth

Oracle Access Manager → supportsProtocol → OAuth 2.0 ⓘ

this entity surface form: OAuth

Network Repository Function → usesSecurityFramework → OAuth 2.0 ⓘ

Thunderbird → supportsStandard → OAuth 2.0 ⓘ

this entity surface form: OAuth2

REST API → securityCommonlyImplementedVia → OAuth 2.0 ⓘ

RFC 6749 → title → OAuth 2.0 ⓘ

this entity surface form: The OAuth 2.0 Authorization Framework

RFC 6749 → defines → OAuth 2.0 ⓘ

this entity surface form: OAuth 2.0 authorization framework

RFC 6749 → relatedTo → OAuth 2.0 ⓘ

OAuth 1.0 → predecessorOf → OAuth 2.0 ⓘ

OAuth 1.0 → supersededBy → OAuth 2.0 ⓘ

OAuth 1.0 → relatedTo → OAuth 2.0 ⓘ

Google APIs → usesAuthenticationMethod → OAuth 2.0 ⓘ

OpenID Connect → builtOn → OAuth 2.0 ⓘ

OpenID Connect → relatedStandard → OAuth 2.0 ⓘ

Jira → supportsAuthentication → OAuth 2.0 ⓘ

this entity surface form: OAuth

RFC 6750 → protocolFramework → OAuth 2.0 ⓘ

this entity surface form: OAuth 2.0 Authorization Framework

Zoom Developer Platform → authenticationMethod → OAuth 2.0 ⓘ

JSON Web Tokens (JWT) → commonlyUsedWith → OAuth 2.0 ⓘ

subject surface form: JSON Web Token

SASL → relatedTo → OAuth 2.0 ⓘ

LTI → basedOn → OAuth 2.0 ⓘ

this entity surface form: OAuth 2.0 (later versions)

YouTrack → supportsAuthentication → OAuth 2.0 ⓘ

SAML → competesWith → OAuth 2.0 ⓘ

Google Sign-In → supportsProtocol → OAuth 2.0 ⓘ

Google+ sign-in (legacy) → supports → OAuth 2.0 ⓘ

subject surface form: Google+ Sign-In (legacy)