Specifications
- OAuth 2.0 RFC 6749
- Bearer Token Usage RFC 6750
- OAuth 2.0 Threat Model and Security Considerations RFC 6819
- OAuth 2.0 Device Flow
- OAuth 2.0 for Native Apps
- Proof Key for Code Exchange RFC 7636
- JSON Web Token RFC 7519
- OpenID Connect
- IndieAuth
- All OAuth Working Group Specs
Vendor Documentation
Community Resources
- OAuth resources by Aaron Parecki
- OAuth articles by Alex Bilbie
- OAuth articles by Eran Hammer
- User Authentication with OAuth 2.0
- OAuth IETF Mailing List