What is it?
OAuth 2.0 is a popular authorisation protocol that allows users to grant third-party applications access to their resources without revealing their usernames or passwords. It's a standard for secure access to APIs and is widely used for online authorisation.
How does it work?
There are a few key components:
Client Application: This is the application that sends a request to a protected resource
Resource Owner: The user who authorises an application to access their account and grants access
Resource Server: This hosts the protected resource
Authorisation Server: The server that authenticates the user and issues access tokens (e.g. DualShield Authentication Server)
The Client Application requests access to a resource. A Resource Owner gives permission in the form of an authorisation grant which is sent back to the client.
The client then sends the grant to the Authorisation Server. In return, the server sends an Access Token to the Client.
The token can then be used on the Resource Server to access the protected resource.
Please give a real life scenario example...
You wish log on to ChatGPT and you are give the option of either signing in with an account you have already created; sign up for a new account; or continue with Googlel, Microsoft or Apple accounts.
You decide that you want to Continue with Google. You then click 'Continue with Google'. You will be redirected to Google's sign in page.
You sign in with Google after which you have access to your ChatGPT profile.
Therefore in this scenario ChatGPT is the client application. The Authorisation Server Google.