Teknikstack

OAuth

OAuth

OAuth is an open authorization protocol that lets users grant third-party apps limited access without sharing passwords.

oauth.net github.com stackoverflow.com

About OAuth

OAuth is a standardized framework for authorization that separates user credentials from access, allowing apps to obtain access to user data without exposing sensitive login information. It works by having the user grant specific permissions-such as reading email or posting on their behalf-for a limited period.

By defining clear roles like client, resource owner, authorization server, and resource, OAuth makes it straightforward to implement secure delegation across web, mobile, and desktop applications. Version 2.0, the dominant specification today, provides various grant types that suit anything from traditional web apps to devices without browsers (via PKCE or Device Flow).

In practice, OAuth is used widely by major providers like Google, Facebook, GitHub, and Microsoft to power "Sign in with..." flows, API access, and service integrations. Its flexibility, scalability, and strong security model make it a core building block of modern identity and federated authentication solutions.

OAuth is often used together with

OAuth is used at

Afa FörsäkringAfa Försäkring is the safety company that ensures collectively agreed insurance works when life takes an unexpected turn - from sick leave to parental leave.

Axis CommunicationsAxis Communications is a Swedish technology company from Lund that develops network-based surveillance cameras, access control, intercom and audio systems for physical security.

BravidaBravida is the company that makes buildings work - from electrical and ventilation systems to security and automation.

DigiExam Solutions SwedenDigiExam Solutions Sweden AB builds a secure, user‑friendly platform for digital exams - from school tests to higher education - focusing on privacy and reliability.

Epidemic SoundEpidemic Sound is the music platform that makes it easy for creators to find the right sound - with a catalog that is completely rights-cleared and ready to be used worldwide.

IneraInera is the IT company that keeps Sweden’s welfare services connected through digital solutions for healthcare, social care, and the public sector.

KivraKivra is the digital mailbox that makes life easier - gather letters, receipts and invoices in one place while helping the environment.

Mastercard Sweden ServicesMastercard Sweden Services is part of the global network that makes payments smooth, secure and accessible - no matter where you are in the world.

QA.techQA.tech builds an AI-driven testing companion that does the tedious work for developers - so you can focus on creating, not clicking around.

Roxtec InternationalRoxtec International is the company that plugs all the gaps - literally. They develop smart seals that protect everything from ships to data centers.

SkandiaSkandia is a historic Swedish financial and insurance company offering life, pension and savings products with a focus on long-term perspective and sustainability.

TrueSecTrueSec is a Swedish cybersecurity company that prevents breaches and minimizes damage when IT threats strike, with a human and engaged approach.

XensamXensam develops smart software to make license management simple, automated and - believe it or not - a bit more enjoyable.

YubicoYubico is the Swedish tech company that makes the internet safer with its small but powerful YubiKey - a hardware key that prevents phishing and password issues before they start.