Basic Terminologies
This section revolves around the following terms:
| Term | Description |
|---|---|
| Resource | Resource is data or functionality that a client application wants to access |
| Client | The client application that is requesting access to protected resources |
| Client ID | The Client ID is unique for each client application to distinguish and identify the client |
| Client Secret | A confidential and secure code that is known only to the client application and the authorization server |
| Access Token URL | The URL provided by an authorization server to enable the client to obtain the access token. Note: The access token is exchanged when the client wants to access the resource data |
| Authorize URL | The URL provided by an authorization server to allow a third-party application to access a user's protected resources |
| Refresh Token URL | Refresh token URL is the endpoint where, upon the expiration of certain access tokens with a finite duration, the client initiates a request to acquire a new access token from the resource |
| Redirect Link | The redirect link is the location to which the user is redirected, once data access has been authorized |