Oauth2.0

Is an authorization framework that provides a detailed authorization mechanism to ensure the security of user resources on the server. The final information oAuth2 obtains is, can I (OAuth2 service provider) user resources let you (oAuth2 client) access usage scenario Used in the case of using a third party account login (such as using Weibo, QQ, github login app)

CAS

Single sign-on (SSO) ensures the security of user resources on the client. The final information the client needs to obtain is whether the user has the permission to access resources on the CAS client.

JWT

Access Token is an authentication protocol that provides a method for issuing Access tokens and verifying the issued signed Access tokens. Tokens themselves contain a set of statements that applications can use to restrict user access to resources. Usage Scenario This mode is used when the front and back ends are separated and simple protection of background APIS is required.(No session is separated from the front and back ends, and frequent password transfer is unsafe.)