Definition
A standard way for one app to grant another app access to your account without sharing the password.
An open authorization protocol that delegates resource access via tokens, widely used by cloud and SaaS APIs and a frequent target for credential-exfiltration concerns in AI agents.