OAuth 2.0
OAuth 2.0 is the next evolution of the OAuth protocol which was originally created in late 2006. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices. This specification is being developed within the IETF OAuth WG and is based on the OAuth WRAP proposal.
Questions, suggestions and protocol changes should be discussed on the mailing list.
Reading the spec
The final version of the spec can be found at http://tools.ietf.org/html/rfc6749.
Implementations
Server Libraries
-
Java
-
PHP
- PHP OAuth2 Server and Demo
- PHP OAuth 2.0 Auth and Resource Server and Demo
- PHP OAuth 2.0 (AS with SAML/BrowserID AuthN, with management REST API, see DEMO)
- PHP OAuth2.0 for Silex and Demo
- PHP OAuth2.0 for Symfony and Demo
-
Python
- Python OAuth 2.0 Provider (see Tutorial)
- OAuthLib (a generic implementation of the OAuth request-signing logic) is avaliable for Django and Flask web frameworks
- NodeJS OAuth 2.0 Provider
- Ruby OAuth2 Server (draft 18)
- .NET DotNetOpenAuth
- Erlang Oauth2 Server framework
- Thinktecture IdentityServer
Client Libraries
- PHP
- PHP OAuth 2.0 client
- OAuth2/OpenID Connect Client Library for PHP/Zend Framework 2
- Cocoa
- iPhone and iPad
-
Java
-
Python
- Ruby Gem
- Ruby
-
.NET
-
Qt/C++
-
Lua/Corona SDK
Services that support OAuth 2
- 37signals (draft 5)
- Box
- Beeminder
- Campaign Monitor
- Clever
- Dropbox
- Facebook’s Graph API (see sociallipstick.com/?p=239)
- Foursquare
- Geoloqi
- GitHub
- Meetup
- NationBuilder
- Salesforce
- Citrix ShareFile
- SoundCloud
- Do.com (draft 22)
- Windows Live
Legacy
For more information on OAuth 1.0 and 1.0a, see the old About page.
Edit This Site
The source code to this site is available on Github. Feel free to submit pull requests with changes!