At the end of the day, OAuth is just a way to communicate between services and users, and as such it's easy to grasp and non-controversial.
OAuth solved a universal problem – signing into a web site – and, in doing so, created a new problem: how does a site know it's really you?
OAuth solved a universal problem – signing into a web site – and, in doing so, created a new problem: how does a site know it's really you?