oauth tutorial - OAuth Endpoints - oauth2 tutorial - oauth authentication
What are Endpoints in Oauth 2.0?
- An endpoint is typically a URI on a web server which is given for an instance of the address of a Java servlet, JSP page, PHP page, ASP.NET page.
- The authorization endpoint and token endpoint are located on the authorization server.
- The redirect endpoint is given in the client application
- The diagrams which are given below are the endpoints of OAuth 2.0
learn oauth tutorial - oauth endpoints - oauth example
OAuth 2.0 Endpoints
- The endpoints are defined in three different types and they are:
- Authorization Endpoint
- Token Endpoint
- Redirection Endpoint
Authorization Endpoint
- The authorization endpoint is the endpoint which is done on the authorization server where the resource owner logs in, and it grants authorization to the client application.
Token Endpoint
- The token endpoint is the endpoint done on the authorization server where the client application exchanges the authorization code, client ID and also the client secret, for an access token.
Redirect Endpoint
- The redirect endpoint is the endpoint given in the client application where the resource owner is redirected to the web application, after having granted authorization at the authorization endpoint.
learn oauth tutorial - oauth endpoint - oauth example
OAuth 2.0 Endpoints.
- The OAuth 2.0 specification does not describe how the URI of these endpoints are found or documented. That is up to each implementer to decide. Most sites will have a subsite for developers documenting these endpoints.
Authorization Endpoint
- The authorization endpoint is the endpoint on the authorization server where the resource owner logs in, and grants authorization to the client application.
Token Endpoint
- The token endpoint is the endpoint on the authorization server where the client application exchanges the authorization code, client ID and client secret, for an access token.
Redirect Endpoint
- The redirect endpoint is the endpoint in the client application where the resource owner is redirected to, after having granted authorization at the authorization endpoint.