Oauth - Resource Server

Oauth - Resource Server

About

A resource server is one of the 4 roles of Oauth. It hosts the protected resources, capable of accepting and responding to protected resource requests using access tokens.

Articles Related

Example

An end-user (resource owner) can grant a printing service (client) access to her protected photos (the protected resources) stored at a photo-sharing service (the resource server).

Implementation

The interaction between the authorization server and resource server is beyond the scope of the oauth specification.

Recommended Pages

OAuth - Token Endpoint

OAuth - Token Endpoint About The token endpoint is an authorization endpoint used by the client to obtain an access token by presenting its: * authorization grant * or refresh token. The toke "...

Oauth - Role

Oauth - Role About OAuth defines four roles: * * * * The interaction between this roles is described in the flow. Articles Related Example An end-user (resource owner) can grant a p "...

Oauth - Protected Resource

Oauth - Protected Resource About A protected resource is a resource hosted and protected by a resource server. Articles Related Management * Resource Server * Protected resource request *

Oauth - Authorization Server

Oauth - Authorization Server About Authorization Server in Oauth is one of the 4 oauth role. The server issuing access tokens to the client after successfully authenticating the resource owner and "...

Oauth - Access Token

An access token is a token representing an access authorization created during: a implicit grant flow or a authorization code flow session identifier It is a string representing an access authorizat "...

Oauth - Bearer Token

bearer token is a access token implementation defined in the OAuth 2.0 Authorization Framework The token may be a Json Web Token (JWT) or an other access token . Usage Any party in possession of a bea "...

Oauth - Client (App)

client is one of the 4 roles of the Oauth specification. In its most basic form, it's a web site used by a end-user. In more details, it's is a (first-party or third party service application making "...

Oauth - Flow (Abstract Protocol Flow)

The abstract OAuth 2.0 flow describes the interaction between the four roles. Type For each type of grant, you got a flow: Authorization Code Resource Owner Password Credentials Implicit Client Cr "...

Oauth - Refresh token

When an access token expires, developers can use an optional refresh token to request a new access token without having to ask the user to enter their credentials again. Refresh tokens are credentials "...

Oauth 2.0 - Authorization framework

This section talks OAuth 2.0. (OAuth 2.0 replaces OAuth 1.0) The following two specifications provide a general framework for third-party applications (know as the client) to obtain and use limited ac "...

Share this page: