Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What exactly is an "OAuth Provider"?

Tags:

language-agnostic

architecture

oauth

oauth-2.0

oauth-provider

I want to understand what is usually meant by the term "OAuth Provider". There seems no mention of it in the OAuth specification.

If we consider a OAuth Provider as a component of an application, what functions does it perform (e.g. authorization, implementation of API methods, etc.)? How does it relate to the rest of the application?

like image 723
Eugene Yarmash Avatar asked Apr 23 '12 13:04

Eugene Yarmash

People also ask

What is an OAuth provider?

An OAuth service provider is defined with the oauthProvider element in the server. xml file. You can define an OAuth service provider by editing the server. xml file or by using the WebSphere® Application Server Development Tools for Liberty. This task describes how to define a minimal OAuth configuration.

What is OAuth in simple words?

OAuth (pronounced “oh-auth”) is a technological standard that allows you to share information between services without exposing your password. It's a widely-adopted standard that's used by developers of websites and apps, and you probably use services every day that utilize OAuth.

What is OAuth and how it works?

OAuth essentially allows the user, via an authentication provider that they have previously successfully authenticated with, to give another website/service a limited access authentication token for authorization to additional resources. Additionally, OAuth 2.0 is a framework, not a protocol (like version 1.0).

What is an OAuth 2.0 provider?

OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices.

2 Answers

Well, OAuth provider is no part of the OAuth spec, so there's no "real" answer to your question. However, it's usually the company/person who built the OAuth-protected service, OR the OAuth-protected service itself. It can also refer to the part of the API that offers OAuth endpoints (usually /authorize and /access_token).

edit: The "old" OAuth 1 community spec defined the "service provider" as

A web application that allows access via OAuth.

It was later redefined in the OAuth RFC as a server, which is:

An HTTP server (per [RFC2616]) capable of accepting OAuth-authenticated requests (Section 3).

like image 96
Tom van der Woerdt Avatar answered Oct 20 '22 15:10

Tom van der Woerdt

The OAuth Provider is provider that supplies the OAuth service for instance google, twitter, yahoo! or whoever you are asking to log in the user.

Or in other words the provider that tells that the user logged in successfully.

like image 30
Jontas Avatar answered Oct 20 '22 15:10

Jontas
Sign in to Comment

Related questions

Transactional queueing/dequeueing
Best Practices: 3-Tier Architecture in LINQ
Designing system architecture for real time acquisition and 'control'
How do patches and service packs work?
Architecting a Complex iPhone Application?
What are the benefits and risks of moving to a Model Driven Architecture approach?
Architecture for new ASP.NET web application
What are some open source tools to check a software architecture's robustness?
Architectural tips on implementing GUI logic
Mobile App - Server Architecture
Passing DTO to my ViewModels constructor to map properties
Difference between Enterprise Continuum, the Architecture Repository, and the Architecture Content framework
What are horizontal and vertical design elements?
Split data access class into reader and writer or combine them?
any good OSGi remote service references/books/tutorials? [closed]
What are the best practices for building an SMS server
What are the differences between 'Find' and 'Get' verbs on methods in the Repository or Data Access Methods?
Is an application framework an anti-pattern?
Inheritance/Interface design of a game
Where to store application global settings?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!