Oauth - Resource Server

Oauth - Resource Server

About

A resource server is one of the 4 roles of Oauth. It hosts the protected resources, capable of accepting and responding to protected resource requests using access tokens.

Articles Related

Example

An end-user (resource owner) can grant a printing service (client) access to her protected photos (the protected resources) stored at a photo-sharing service (the resource server).

Implementation

The interaction between the authorization server and resource server is beyond the scope of the oauth specification.

Recommended Pages

Oauth - Client (App)

Oauth - Client (App) About client is one of the 4 roles of the Oauth specification. In its most basic form, it's a web site used by a end-user. In more details, it's is a (first-party or third pa "...

Oauth - Protected Resource

Oauth - Protected Resource About A protected resource is a resource hosted and protected by a resource server. Articles Related Management * Resource Server * Protected resource request *

Oauth - Role

Oauth - Role About OAuth defines four roles: * * * * The interaction between this roles is described in the flow. Articles Related Example An end-user (resource owner) can grant a p "...

OAuth - Token Endpoint

OAuth - Token Endpoint About The token endpoint is an authorization endpoint used by the client to obtain an access token by presenting its: * authorization grant * or refresh token. The toke "...

Oauth - Authorization Server

Oauth - Authorization Server About Authorization Server in Oauth is one of the 4 oauth role. The server issuing access tokens to the client after successfully authenticating the resource owner and "...

Oauth - Access Token

An access token is a token representing an access authorization created during: a implicit grant flow or a authorization code flow session identifier It is a string representing an access authorizat "...

Oauth - Flow (Abstract Protocol Flow)

The abstract OAuth 2.0 flow describes the interaction between the four roles. Articles Related Type For each type of grant, you got a flow: Authorization Code Resource Owner Password Credentials Im "...

Oauth - Refresh token

When an access token expires, developers can use an optional refresh token to request a new access token without having to ask the user to enter their credentials again. Refresh tokens are credentials "...

Oauth 2.0 - Authorization framework

This section talks OAuth 2.0. (OAuth 2.0 replaces OAuth 1.0) The following two specifications provide a general framework for third-party applications (know as the client) to obtain and use limited ac "...

Share this page: