What Is OAuth Client?

Post a reply

In an effort to prevent automatic submissions, we require that you complete the following challenge.
:D :) ;) :( :o :shock: :? 8-) :lol: :x :P :oops: :cry: :evil: :twisted: :roll: :!: :?: :idea: :arrow: :| :mrgreen: :geek: :ugeek:
BBCode is ON
[img] is ON
[flash] is OFF
[url] is ON
Smilies are ON
Topic review

Expand view Topic review: What Is OAuth Client?

What Is OAuth Client?

Post by admin » Wed May 29, 2019 7:22 am

OAuth is a convention that apps use to provide client software applications with a secure access. OAuth works through HTTP and authorizes Servers, Applications Devices and APIs, with an access token instead of credentials.

An OAuth client asks for a token, gets a token which is then used to access an API. It doesn't know anything about who authorized the application or if there was even a user there at all. In fact, the point of OAuth is to give a 'secured delegated access' for use in situations where the user is not present on the connection between the client and the resource being accessed. This is great for client authorization, but it's really bad for authentication, where the point is figuring out who the user is whether as to a user is there (or not).