+ 1

What is OAuth2?

It is an authorization framework that enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
OAuth2 is a tool in the User Management and Authentication category of a tech stack.

Who uses OAuth2?

85 companies reportedly use OAuth2 in their tech stacks, including Typeform, Biting Bit, and Foretag.

459 developers on StackShare have stated that they use OAuth2.

OAuth2 Integrations

OpenID Connect, KrakenD, Aqueduct, Backlog, and Neos CMS are some of the popular tools that integrate with OAuth2. Here's a list of all 9 tools that integrate with OAuth2.
Decisions about OAuth2

Here are some stack decisions, common use cases and reviews by companies and developers who chose OAuth2 in their tech stack.

Needs advice
ORY HydraORY Hydra

Hello Stackshare, Trying to create an identity management solution that supports standard protocols (OpenID, OAuth2). Any recommendations on which 2 tools can be evaluated? Needs flexibility in terms of working with other identity providers, User federation, etc. Thanks in advance.

See more
Isaac Ogunleye
Backend Developer at Coast research Institute | 5 upvotes 路 256.1K views
Needs advice

My teammates and I are arguing on which library to use for our local and social authentication in our express app between OAuth2 and Passport. I went for Passport cause I personally like it, and it seems easier to implement with good docs, but some of my teammates think it's less secure than OAuth2. So any advice please would be appreciated. Thanks 馃檹馃徎

See more
Joshua Dean K眉pper
CEO at Scrayos UG (haftungsbeschr盲nkt) | 4 upvotes 路 130.7K views

We use Quarkus with native compilation in GraalVM for our global REST-API "Charon", that can be used by every developer to request user, server and game-data (protected through OAuth2). Quarkus offers a reliable framework, library and stack for high-quality APIs and integrates Vert.x into its core.

GraalVM pushes the performance boundaries even further with the ability to perform ahead-of-time native compilation so we can reach an incredible small memory-footprint and fast bootup-times that we need for our microservices architecture.

See more
Joshua Dean K眉pper
CEO at Scrayos UG (haftungsbeschr盲nkt) | 7 upvotes 路 763.5K views

As the access to our global REST-API "Charon" is bound to OAuth2, we use Keycloak inside Quarkus to authenticate and authorize users of our API. It is not possible to perform any un-authenticated requests against this API, so we wanted to make really sure that the authentication/authorization component is absolutely reliable and tested. We found those attributes within Keycloak, so we used it.

See more

Blog Posts

Sep 29 2020 at 7:36PM


PythonSlackG Suite+17

OAuth2 Alternatives & Comparisons

What are some alternatives to OAuth2?
OpenID Connect
It is a simple identity layer on top of the OAuth 2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.
A set of unified APIs and tools that instantly enables Single Sign On and user management to all your applications.
JSON Web Token
JSON Web Token is an open standard that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed.
It is an Open Source Identity and Access Management For Modern Applications and Services. It adds authentication to applications and secure services with minimum fuss. No need to deal with storing users or authenticating users. It's all available out of the box.
Azure Active Directory
It is a comprehensive identity and access management solution that gives you a robust set of capabilities to manage users and groups. You can get the reliability and scalability you need with identity services that work with your on-premises, cloud, or hybrid environment.
See all alternatives

OAuth2's Followers
610 developers follow OAuth2 to keep up with related blogs and decisions.