OAuth2
SKILL.md
OAuth 2.0
Expert assistance with OAuth 2.0 authorization framework and OpenID Connect.
Overview
OAuth 2.0 is an authorization framework that enables applications to obtain limited access to user accounts. Key concepts:
- Resource Owner: User who owns the data
- Client: Application requesting access
- Authorization Server: Issues access tokens (e.g., Keycloak, Auth0)
- Resource Server: API that holds protected resources
- Access Token: Credentials to access protected resources
- Refresh Token: Credentials to obtain new access tokens