OAuth 2.0 is based upon the principle of authorization procedure only. Largely designed as a means of licensing the hall passes to the set of assets like user data or APIs etc. https://www.secureitworld.com/blog/what-is-oauth-2-0-and-how-does-it-work/