Abstract
RFC 6749 defines the OAuth 2.0 authorization framework, enabling third-party applications to obtain limited access to HTTP services on behalf of a resource owner. It specifies authorization grant flows including authorization code, implicit, resource owner password credentials, and client credentials.