Abstract
OAuth 2.0 is a major breakthrough in identity delegation. It has its roots in OAuth 1.0, but OAuth WRAP primarily influenced it. The main difference between OAuth 1.0 and 2.0 is that OAuth 1.0 is a standard protocol for identity delegation, whereas 2.0 is a highly extensible framework. OAuth 2.0 is already the de facto standard for API security and is widely used across leading web sites including Facebook, Google, LinkedIn, Microsoft (MSN, Live), PayPal, Instagram, Foursquare, GitHub, Yammer, Meetup, and many more. There is one popular exception: Twitter still uses OAuth 1.0.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2014 Prabath Siriwardena
About this chapter
Cite this chapter
Siriwardena, P. (2014). OAuth 2.0. In: Advanced API Security. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4302-6817-8_7
Download citation
DOI: https://doi.org/10.1007/978-1-4302-6817-8_7
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4302-6818-5
Online ISBN: 978-1-4302-6817-8
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)