Types [1]
Centralized
- Inexpensive
- Easy to configure
Decentralized
- each has its own database
Implicit
- Is a flow to obtain an access to token authorized API req.
- Running in env that don’t provide secure storage
Explicit
- Like OAtuth 2.0
- process of granting/denying
- based on user’s identity
- assigned permissions
![OAuth[1]](..\..\assets\images\oauth.jpg)