What is the Bearer Token in OAuth?

Oauth

About

bearer token is a access token implementation defined in the OAuth 2.0 Authorization Framework

Format

The token may be:

Usage

Any party in possession of a bearer token (a bearer) can use it to get access to the associated resources (without demonstrating possession of a cryptographic key) because the token is:

  • signed
  • or is known by the authorization server

Authorization header

You will find it in the authoritzation header of a HTTP request 

Authorization: Bearer <token>
Authorization: Bearer some+base64+string

Glossary

Bearer-Only

When an authentication is bearer-only, it means that the authentication requires a authorization header

1) 2)

1)
The OAuth 2.0 Authorization Framework: Bearer Token Usage
2)
https://tools.ietf.org/html/rfc6750




Discover More
Jwt Auth Flow
Authentication - Jwt (Json web token)

json web token is a token. It's also known as jot. When a JWT is signed, it becomes a JWS and can be used for sender authentication and authorization. The main purpose of JWTs is to transfer (ie identity...
Http - Authorization Header (authentication entries)

authorization is a header that contains credentials to authenticate a user known also as Authentication entry. In the request, you would see the following [header|header]] The basic authentication...
Oauth
Oauth - Access Token

An access token is a token representing an access authorization created during: a implicit grant flow or a authorization code flow session identifier It is a string representing an access authorization...
Oauth
Oauth 2.0 - Authorization framework

The OAuth 2.0 Authorization Framework specification together with the OAuth 2.0 Bearer Token Usage provide a general framework for third-party applications (know as the client) to obtain and use limited...
Oauth 2.0 - Authorization framework

This section talks OAuth 2.0 (OAuth 2.0 replaces OAuth 1.0) The following two specifications provide a general framework for third-party applications (know as the client) to obtain and use limited...
What are the HTTP Authentication schemes and methods?

This page lists the HTTP authentication schemes and the HTTP components that they used Via the Http Authorization Header: Basic Bearer Digest Others: DPoP HOBA 7486rfc 7486, Section 3...



Share this page:
Follow us:
Task Runner