Roles (RFC 6749)
Last updated
Last updated
An entity capable of granting access to a protected resource.
End-user: a resource owner that is a person.
The server hosting protected resources.
Capable of accepting and responding to protected resource requests using access tokens.
An application makes requests for protected resources on behalf of the resource owner and with its authorization.
The server issues access tokens to the client after successfully authenticating the resource owner and obtaining its authorization for the client to access one of its resources.