OAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices.
In order to use OAuth authentication, private and public keys should be generated and placed to the server. Please contact your administrator or please follow the OroOAuth2ServerBundle documentation if you see the following error message:
The encryption key does not exist.
If the system has the customer portal package installed, OAuth authorization for customer users to the storefront API resources is enabled automatically.