OAuth

OpenASA can act as an OAuth Provider for apps, browsers, and agents in the ecosystem.

Protocol version and supported flows

• Protocol: OAuth 2.0
• Currently supported: Authorization Code + PKCE (S256)
• Not currently supported: Implicit, Resource Owner Password, Client Credentials

This module covers the provider-side integration path:

• OpenASA as the OAuth Provider
• Authorization code flow
• Client registration
• Web app integration
• Backend token exchange and user profile lookup

Hub or CTL login instructions are out of scope here. Upstream identity-provider configuration is also out of scope.

Recommended Reading Order

1. OAuth Quickstart
2. Authorization Code Flow
3. Client Registration
4. Web App Integration
5. Backend Integration

Related API docs

• OAuth Provider API