Provision of the access to protected resources in case of the necessity of a user’s personal data transfer to a third-party is a problem of many engineering companies. Use of off-brand servers is not always reliable and often quite expensive. Creation of our own authorization server will help to avoid such problems. An authorization server was developed that allows to obtain the necessary information, using only an access token. It has minimal functionality that lately can be expanded or adapted to the needs of a particular company.