This document summarizes a typical 3-legged OAuth workflow. It involves a developer registering an app with credentials, a user interacting with the app and being redirected to an OAuth provider for authentication, and the app exchanging an authorization code for an access token to access the user's resources on the provider's site within the user-defined scope. The demo will show returning movie recommendations using this OAuth flow.