Reading: Bearer Authorization

1. Write the following steps in the correct order:
   1. Register your application to get a client_id and client_secret
   2. Make a request to a third-party API endpoint
   3. Redirect to a third party authentication endpoint
   4. Ask the client if they want to sign in via a third party
   5. Receive authorization code
   6. Make a request to the access token endpoint
   7. Receive access token
2. What can you do with an authorization code?
   • To obtain an access token
3. What can you do with an access token?
   • to access protected infomation by making HTTP requests with access token
4. What’s a benefit of using OAuth instead of your own basic authentication?
   • Single-sign-on systems give the user one less password to worry about managing. Additionally, it grants user more control over their data; they control which applications have what type of access to which type of data.