I'm trying to implement an OAuth2 solution, hopefully using a somewhat older framework, though that's not essential. This is something I have zero experience with, and I'm not sure our organization is all that on top of it, either. The guy who primarily implemented our identity server left, which may leave us with tools and not a complete understanding of how to use them.

I've been following the sample code from Google in this link:

https://developers.google.com/identity/protocols/oauth2

but it has left me unclear on one issue. I have a client ID from our identity server, and it appears that I should be putting up a web page to get credentials, but no example I have seen actually does that. So I'm unclear as to whose role that is. Am I to show a page for username and password, or is that something the identity server does? I get only vague answers from the one person we still have who has any understanding of this, so I felt somebody on here might be able to clarify this.