OAuth 2.0 Terminology

Term with description

• Resource Owner: The actual user who owns data (the profile data)
• Client: Application like the website
• Authorization server: System where I can say yes. AAD
• Resource Server: API that holds data, contact API
• Authorization grant: Proves that the user has said yes
• Redirect URI: Redirect back to the client application
• Access token: A key to getting access to what the user has granted
• Scope: List of scopes (read email, write an email, read contacts, etc.) this will be requested
• Consent: Screen to consent to the list of scopes