jspωiki
Abstract Protocol Flow

Overview#

The Abstract Protocol Flow is an Abstract OAuth 2.0 Protocol Flow and is illustrated as:
     +--------+                               +---------------+
     |        |--(A)- Authorization Request ->|   Resource    |
     |        |                               |     Owner     |
     |        |<-(B)-- Authorization Grant ---|               |
     |        |                               +---------------+
     |        |
     |        |                               +---------------+
     |        |--(C)-- Authorization Grant -->| Authorization |
     | Client |                               |     Server    |
     |        |<-(D)----- Access Token -------|               |
     |        |                               +---------------+
     |        |
     |        |                               +---------------+
     |        |--(E)----- Access Token ------>|    Resource   |
     |        |                               |     Server    |
     |        |<-(F)--- Protected Resource ---|               |
     +--------+                               +---------------+

The interaction between the four roles and includes the following steps:

The preferred method for the client to obtain an Authorization Grant from the Resource Owner (depicted in steps (A) and (B)) is to use the Authorization Server as an intermediary.

More Information#

There might be more information for this subject on one of the following: