Zoho Sprints APIs use Oauth 2.0 framework for authorization and authentication. They are REST based and will help you manage your data in Sprints with ease. You will be able to integrate with other Zoho applications and third-party applications using these APIs. The responses are JSON based. The document RFC6749 is a complete guide to understand Oauth 2.0 and the workflows available in it.
The abstract of the document says this:
The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
Let's break down the terminologies through a small use case.
Say, I have an account in Zoho Sprints and I am developing a web application called "Nexus" that would be used as an employee portal for my company. I want Nexus to access Sprints on behalf of me and fetch some of my team's data in Zoho Sprints. The data fetched by the app will be used to display the team members' attendance, allocation into various projects, payroll, etc. So, going with the definition now, the third-party application is Nexus , the HTTP service is Zoho Sprints and resource owner is myself . In a nutshell, I delegate Nexus to operate on Zoho Sprints on my behalf. Oauth 2.0 helps me achieve this kind of access delegation with ease.