Authentication With OAuth 2.0fleeting
- External reference: https://oauth.net/articles/authentication/
developers and API providers to incorrectly conclude that OAuth is itself an authentication protocol and to mistakenly use it as such.
OAuth 2.0 is not an authentication protocol
Much of the confusion comes from the fact that OAuth is used inside of authentication protocols, and developers will see the OAuth components and interact with the OAuth flow and assume that by simply using OAuth, they can accomplish user authentication
Authentication in the context of a user accessing an application tells an application who the current user is and whether or not they’re present
Authentication is all about the user and their presence with the application,