[{"data":1,"prerenderedAt":88},["ShallowReactive",2],{"term-o\u002Foauth":3,"related-o\u002Foauth":62},{"id":4,"title":5,"acronym":6,"body":7,"category":40,"description":41,"difficulty":42,"extension":43,"letter":44,"meta":45,"navigation":46,"path":47,"related":48,"seo":55,"sitemap":56,"stem":59,"subcategory":60,"__hash__":61},"terms\u002Fterms\u002Fo\u002Foauth.md","OAuth","Open Authorization",{"type":8,"value":9,"toc":33},"minimark",[10,15,19,23,26,30],[11,12,14],"h2",{"id":13},"eli5-the-vibe-check","ELI5 — The Vibe Check",[16,17,18],"p",{},"OAuth is the system behind 'Login with Google.' Instead of making a new account, you let Google vouch for you. Google checks your identity and tells the app 'yep, this is really who they say they are' without ever giving the app your Google password.",[11,20,22],{"id":21},"real-talk","Real Talk",[16,24,25],{},"OAuth is an open standard for delegated authorization that allows applications to access user resources on other services without obtaining passwords. The user grants permissions to a third-party app via an identity provider. OAuth provides access tokens, not authentication by itself.",[11,27,29],{"id":28},"when-youll-hear-this","When You'll Hear This",[16,31,32],{},"\"Implement OAuth so users can log in with GitHub.\" \u002F \"OAuth handles the authorization — OpenID Connect handles the identity.\"",{"title":34,"searchDepth":35,"depth":35,"links":36},"",2,[37,38,39],{"id":13,"depth":35,"text":14},{"id":21,"depth":35,"text":22},{"id":28,"depth":35,"text":29},"backend","OAuth is the system behind 'Login with Google.' Instead of making a new account, you let Google vouch for you.","intermediate","md","o",{},true,"\u002Fterms\u002Fo\u002Foauth",[49,50,51,52,53,54],"OAuth2","JWT","Authentication","Authorization","Token","API Key",{"title":5,"description":41},{"changefreq":57,"priority":58},"weekly",0.7,"terms\u002Fo\u002Foauth",null,"oAryIGCAL7FW1Jp0UwMPbLfr7PuwV_snYQFLqLRZ6qQ",[63,68,73,77,81,84],{"title":54,"path":64,"acronym":60,"category":65,"difficulty":66,"description":67},"\u002Fterms\u002Fa\u002Fapi-key","ai","beginner","An API key is your password to use an AI service. You include it in every request to prove you're allowed to use the API and so they know who to charge.",{"title":51,"path":69,"acronym":70,"category":71,"difficulty":66,"description":72},"\u002Fterms\u002Fa\u002Fauthentication","AuthN","security","Authentication is proving you are who you say you are.",{"title":52,"path":74,"acronym":75,"category":71,"difficulty":66,"description":76},"\u002Fterms\u002Fa\u002Fauthorization","AuthZ","Authorization is deciding what you're allowed to do after you've proven who you are.",{"title":50,"path":78,"acronym":79,"category":40,"difficulty":42,"description":80},"\u002Fterms\u002Fj\u002Fjwt","JSON Web Token","A JWT is a special kind of token that contains information inside it. It has three parts: a header, a payload (with your user ID, role, etc.",{"title":49,"path":82,"acronym":60,"category":40,"difficulty":42,"description":83},"\u002Fterms\u002Fo\u002Foauth2","OAuth2 is the updated version of OAuth that everyone actually uses today.",{"title":53,"path":85,"acronym":60,"category":86,"difficulty":66,"description":87},"\u002Fterms\u002Ft\u002Ftoken","vibecoding","In AI-land, a token is a chunk of text — roughly 3\u002F4 of a word.",1776518298335]