OAuth 2.0 provides simplified client-developer flows and lets you securely grant access to third-party applications or aggregators to integrate and access Razorpay merchant resources using token-based authentication.
For example, an online accounting software company, Acme Corp. that wants to provide accounting and bookkeeping services to a Razorpay merchant (or user).
Acme Corp. has to be registered as a third-party application with Razorpay to create credentials (
secret) that authenticates the application on Razorpay. When an Acme user wants to use Acme Corp. application, he or she is asked to sign in to Razorpay on the application, approve permissions allowing the application to access protected resources and only then proceed with using the application. This is provided via a number of requests and responses that are generated as a part of the OAuth model.