OAuthin

OAuthin is a proposed authorization framework that extends OAuth 2.0 to address device and application contexts where user interaction is limited or indirect. In this model, OAuthin retains the same core roles as OAuth—resource owner, client, authorization server, and resource server—but introduces device bindings and policy-based token issuance to improve security and usability in mobile, IoT, and embedded environments.

Operations and flows: OAuthin uses a device authorization approach similar to the OAuth 2.0 Device Authorization

Security and policy: OAuthin emphasizes token binding to device identity, short-lived access tokens, and robust revocation.

Status and adoption: OAuthin is described in community drafts and experimental projects but has not become

See also: OAuth 2.0, OAuth 2.1, Device Authorization Grant, Token binding, Mutual TLS.