5 comments

[ 4.5 ms ] story [ 20.2 ms ] thread
There is IndieAuth, which adapts OAuth 2 to work with URLs as identities (and being OAuth, can even do authorization): https://aaronparecki.com/2018/07/07/7/oauth-for-the-open-web

https://indieauth.net/

The problem with OAuth - it is too complicated. Both for developers and for users.
OAuth 1 I'd agree with that statement (it's use of crypto gave it more pitfalls), but basic OAuth 2 is really not that bad. It's a few fairly straight-forward HTTP requests.