Continuing the discussion from Prompt the user for a password reset (Ionic and Meteor):
Strictly speaking, Oauth is an authorisation service, not an authentication service. As @corvid says, its purpose is to permit access to services provided elsewhere.
There does seem to be a lot of laziness around authentication - my feeling is that it’s because it’s normally difficult to set it up securely. However, Meteor does provide an easy way to do this as well, so why not use it?
If my only option is to “sign up with Facebook”, I just won’t.
So, is it good practice to use 3rd party Oauth for authentication?