What’s the differences between public & confidential clients?

When using Logto to create an application, you will notice that there are several different application types to choose from, including Single Page Application (SPA), Native App, and Traditional Web App. Intuitively, from the name, it is clear that a Native App runs on operating systems commonly found on devices like phones. However, what exactly are SPA and Traditional Web App? Why do we need to distinguish between these different types of apps? This article will reveal the answers to these questions.

OAuth is an open standard for access delegation, which is typically used as a way for internet users to grant websites or applications access to their information on other websites without providing their passwords.

In the recent decade, it has gradually become the standard authorization process and were widely accepted by most companies such as Google, Meta, Microsoft and so on. The currently used version is OAuth 2.0.

In the context of OAuth, the application we mentioned earlier is referred to as Client. They can make requests for protected resources, given that they have obtained the authorization of the resource owner (usually end-users).

Leave a Comment