学习 OAuth2.0 笔记（ 一 ）

1.1.  Roles

       角色

   OAuth defines four roles:
   OAuth 设定了四个角色

   resource owner

   资源拥有者

      An entity capable of granting access to a protected resource.
      When the resource owner is a person, it is referred to as an
      end-user.

      资源拥有者指一个可以授权访问受保护资源的实体.当资源拥有者是人的时候，他被称为终端用户。

   

   resource server

   资源服务器

      The server hosting the protected resources, capable of accepting
      and responding to protected resource requests using access tokens.

      资源服务器用来托管受保护的资源，具有接收访问令牌请求并且响应受保护的资源。(关键字: access tokens)

   client

    客户端
      An application making protected resource requests on behalf of the      resource owner and with its authorization.  The term "client" does      not imply any particular implementation characteristics (e.g.,      whether the application executes on a server, a desktop, or other      devices).

    客户端是指：一个具备利用资源拥有者的授权信息请求受保护的资源的功能的app。“客户端”并不代表任何特定现实。（app可以是运行在服务器上的，桌面上的，或者其它设备）

   authorization server

   授权服务器
      The server issuing access tokens to the client after successfully      authenticating the resource owner and obtaining authorization.

      授权服务器，验证资源拥有者身份，拥有者进行授权，前两步成功之后，颁发 access,tokens. 
      
   The interaction between the authorization server and resource server
   is beyond the scope of this specification.  The authorization server
   may be the same server as the resource server or a separate entity.
   A single authorization server may issue access tokens accepted by
   multiple resource servers.

   授权服务器与资源服务器的交互超出本规范的范围。

   授权服务器可以与资源服务器是同一服务器或者是一个单独的实体。

  一个单一授权服务器可以为多个资源服务器提供 颁发 access tokens 服务。