CybersecurityOAuth

OAuth 2.0

Short definition

An open standard that lets a third-party app access a user resources on another service (like Google or Facebook) without knowing the password.

Extended definition

OAuth 2.0 is the foundation of "Sign in with Google" and "Connect your account to X". The user authorizes the app to access a specific scope (e.g., read email only), and receives an Access Token valid for an hour. After an hour, it is renewed using a Refresh Token.

Example & use case

The Ortech app offers Sign in with Google via OAuth, importing the user name and photo automatically without a password.

Need a custom solution?

Our engineering team can help you apply these concepts to your own product or business.

Talk to us

Related terms

JSON Web Token

JWT

A digitally signed token format used to authenticate users in web and mobile apps without storing sessions on the server.

Single Sign-On

SSO

A system that lets a user sign in once and access multiple connected applications without re-entering credentials.

More in Cybersecurity

JSON Web TokenRole-Based Access ControlSingle Sign-On