See also: RFC 6749 — The OAuth 2.0 Authorization Framework; RFC 6750 — The OAuth 2.0 Authorization Framework: Bearer Token Usage

OAuth 2.0 is an authorization framework that allows requesting access from an OAuth 2.0 authorization server running independently of Xentara. OAuth 2.0 is supported by a variety of authorization services, including Microsoft Entra ID (formerly Mircrosoft Azure AD) and auth0. A list of services and libraries supporting OAuth 2.0 can be found under https://oauth.net/code/.

The advantage of using OAuth 2.0 over manually managed user passwords or access tokens, is that the tokens do not have to be stored on the server. This makes it much easier to generate new tokens, to renew expired tokens, etc., which would otherwise require updating a token list located on the host Xentara is running on.