OAuth2 Authentication
---------------------

OAuth 2.0 is an authorization framework that enables applications to obtain
limited access to user accounts on third-party services without exposing user
credentials. It's designed to provide secure delegated access - allowing users
to grant applications permission to access their data on other services without
sharing their passwords.

OAuth 2.0 is highly standardized compared to other authentication schemes. It's
defined in RFC 6749 (the core framework) along with numerous related RFCs that
specify extensions, security considerations, and specific implementations.
However, this flexibility can also be a weakness - the core specification leaves
many implementation details open, leading to potential interoperability issues
if not carefully implemented and therefore hooks are provided for this
authentication mechanism as well. JSON Web Token (JWT) in RFC 7519 is an
extension to OAUTH2 and can be used for server to server communications. The
following example is support for AUTH2 using JWTs.

**Examples:**

.. toctree::
  :maxdepth: 1

  examples/oauth2-gcp