Reference pages

Use these pages as reference documentation when implementing the authorization code grant flow in your application. Adapted from The OAuth 2.0 Authorization Framework specification [RFC 6749].

An overview of the authorization code grant flow

Figure 3 from RFC 6749

The steps are as follows:

A: The client application initiates the flow by sending the user's user-agent to the appropriate authorization endpoint.
B: The authentication server of the service provider authenticates the resource owner and attempts to gain consent by presenting the user consent form.
C: Assuming the user grants consent, the authorization server redirects the user ...

Get Mastering OAuth 2.0 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering OAuth 2.0 by Charles Bihis

Reference pages

An overview of the authorization code grant flow

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly