Statements (191)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:user_interface
gptkb:OAuth_2.0 gptkb:protocol |
| gptkbp:allows |
third-party applications access
|
| gptkbp:can_be_configured_for |
gptkb:OAuth2_Client_Authentication_Processing_Filter
custom error messages |
| gptkbp:can_be_extended_by |
with additional features
|
| gptkbp:can_be_used_with |
gptkb:mobile_applications
REST APIs Graph QL APIs |
| gptkbp:configuration |
Client Registration Repository
OAuth2 Authorized Client Service |
| gptkbp:data_return |
gptkb:OAuth2_Authentication_Token
|
| gptkbp:defines |
refresh tokens
scopes authorization grant types |
| gptkbp:designed_for |
gptkb:OAuth_2.0
|
| gptkbp:developed_by |
gptkb:IETF
|
| gptkbp:enables |
third-party applications
|
| gptkbp:first_released |
gptkb:2006
|
| gptkbp:handles |
authentication failures
authentication requests |
| gptkbp:has |
client application
resource owner security considerations authorization server resource server |
| gptkbp:has_flow |
Authorization Code Flow
Client Credentials Flow Device Authorization Flow Implicit Flow Resource Owner Password Credentials Flow |
| gptkbp:has_method |
get Access Token()
load Authorization Request load Authorization Request For Id remove Authorization Request save Authorization Request set Access Token(Access Token) |
| gptkbp:has_property |
scope
access Token expires In refresh Token |
| https://www.w3.org/2000/01/rdf-schema#label |
OAuth 2.0
|
| gptkbp:implements |
Authentication Failure Handler interface
|
| gptkbp:includes |
authorization code flow
client credentials flow resource owner password credentials flow implicit flow authorization code grant client credentials grant implicit grant resource owner password credentials grant |
| gptkbp:interacts_with |
gptkb:OAuth2_Access_Token
OAuth2 Authorization Request OAuth2 Refresh Token |
| gptkbp:is |
gptkb:protocol
|
| gptkbp:is_adopted_by |
gptkb:Twitter
gptkb:Microsoft gptkb:Google gptkb:Facebook government organizations large enterprises startups non-profits |
| gptkbp:is_based_on |
gptkb:HTTP
HTTP protocol |
| gptkbp:is_compatible_with |
RESTful APIs
REST APIs multiple device types single sign-on (SSO) solutions Graph QL APIs |
| gptkbp:is_criticized_for |
complexity
misconfiguration risks token leakage risks |
| gptkbp:is_defined_by |
IETF RFCs
|
| gptkbp:is_designed_for |
third-party applications
user authorization |
| gptkbp:is_documented_in |
gptkb:OAuth_2.0_Authorization_Framework
gptkb:RFC_6749 |
| gptkbp:is_implemented_in |
gptkb:Twitter
gptkb:Cookie_OAuth2_Authorization_Request_Repository gptkb:Http_Session_OAuth2_Authorization_Request_Repository gptkb:Spring_Security_framework gptkb:Microsoft gptkb:Google gptkb:Git_Hub gptkb:mobile_applications gptkb:Facebook desktop applications various programming languages web applications |
| gptkbp:is_maintained_by |
gptkb:OAuth_Working_Group
|
| gptkbp:is_often_used_in |
web applications
in the industry |
| gptkbp:is_part_of |
gptkb:Identity_and_Access_Management
identity and access management security configuration |
| gptkbp:is_promoted_by |
industry standards organizations
security experts |
| gptkbp:is_related_to |
gptkb:Open_ID_Connect
API security identity federation user consent OAuth2 Authorization Request |
| gptkbp:is_standardized_by |
authorization delegation
|
| gptkbp:is_supported_by |
SDKs
libraries and frameworks major tech companies |
| gptkbp:is_used_by |
gptkb:developers
gptkb:mobile_applications desktop applications web applications enterprises |
| gptkbp:is_used_for |
user authentication
single sign-on (SSO) API access control API authentication mobile app login |
| gptkbp:is_used_in |
gptkb:OAuth_2.0_Authorization_Framework
gptkb:Io_T_devices gptkb:cloud_services enterprise applications single sign-on (SSO) social login social media integrations cloud service integrations |
| gptkbp:latest_version |
2.1
|
| gptkbp:manages |
OAuth2 clients
|
| gptkbp:part_of |
gptkb:Spring_Security
|
| gptkbp:protocol |
authorization
|
| gptkbp:provides |
user authentication
access tokens refresh tokens API access control OAuth2 authentication user consent mechanism custom error responses OAuth2 Authorized Client |
| gptkbp:provides_access_to |
protected resources
|
| gptkbp:published_in |
gptkb:RFC_6749
October 2012 |
| gptkbp:related_to |
gptkb:Open_ID_Connect
|
| gptkbp:requires |
gptkb:OAuth2_Access_Token
client ID client registration client secret |
| gptkbp:security |
man-in-the-middle attacks
phishing attacks credential theft |
| gptkbp:specification |
gptkb:RFC_6749
gptkb:RFC_6750 |
| gptkbp:specifies |
client registration
|
| gptkbp:successor |
gptkb:OAuth_1.0
|
| gptkbp:supports |
gptkb:OAuth2_Authentication_Token
multiple clients access tokens refresh tokens authorization codes delegated access token revocation multiple client types multiple grant types OAuth2 authentication flow OAuth2 authorization flows |
| gptkbp:used_for |
delegated access
secure delegated access |
| gptkbp:used_in |
web applications
|
| gptkbp:uses |
access tokens
Bearer tokens authorization grants client credentials redirect URIs OAuth2 Authorized Client Service OAuth2 User Service |
| gptkbp:bfsParent |
gptkb:Liberty
gptkb:VMware_v_Sphere gptkb:Compliance_Management gptkb:Plaid gptkb:API gptkb:Java_EE gptkb:trophy gptkb:Identity_and_Access_Management gptkb:Public_service gptkb:HTTPS gptkb:IETF gptkb:workers gptkb:Micro_Profile gptkb:Microsoft_Mobile_Services gptkb:Nextcloud gptkb:Web_Authentication_API |
| gptkbp:bfsLayer |
4
|