I think we can all agree that OAuth terminology is confusing or even misleading, at least to the uninitiated. There are lots of entities, pieces at play, various forms of communication and information exchange. It’d be a lot more helpful if the SDK repositories listed what flows they are intended to implement (in their
README or documentation, what other flows they are theoretically capable of supporting (implementation or configuration is left up to a developer) and what is definitely unsupported or outright prohibited.
This will hopefully disambiguate a lot of the terms and let the developers familiarize themselves with the tools they’re using.