Oauth 2.0

Oauth 2.0 is the essentially the process of having a second server that your server connects to in order to authenticate users and their permissions. This is a more secure process because you are not keeping your secret token on your server, and because the second server needs an authentication key in order to be accessed.

By keeping these two parts of your authentication process obscured and abstracted away from any place a client might have access to the whole process becomes more secure. Also with the addition of pre-set endpoints you can add another layer security. These allow you to define which endpoints are accessible by who and also add another obfuscated SCOPE key that needs to be sent over in order to allow access