Which framework allows third-party applications limited access to HTTP services?

OAuth 2.0 is a widely adopted framework designed specifically to provide third-party applications with limited access to HTTP services. It operates on a delegation model, allowing resource owners to authorize third-party applications to access their resources without sharing their credentials directly. This is accomplished through the use of access tokens, which are issued by an authorization server after a user authenticates and grants permission to the third-party application.

The main advantage of OAuth 2.0 is that it enables secure, delegated access to resources without exposing user credentials. For example, when a user wants to allow a mobile application to interact with their social media account, instead of sharing their username and password, they can authorize the app via OAuth 2.0, which generates a token that the app can use for limited operations.

This framework is particularly beneficial in modern software development and RESTful API design, where many applications need to interact without users having to manage passwords multiple times across various services. OAuth 2.0's scope and permission model further enhance its flexibility and security, making it ideal for contemporary web service interactions.