RFC 6750

The OAuth 2.0 Authorization Framework: Bearer Token Usage, October 2012

Canonical URL:
https://www.rfc-editor.org/rfc/rfc6750.txt
File formats:
Plain TextPDF
Status:
PROPOSED STANDARD
Authors:
M. Jones
D. Hardt
Stream:
IETF
Source:
oauth (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC6750

Discuss this RFC: Send questions or comments to oauth@ietf.org

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This specification describes how to use bearer tokens in HTTP requests to access OAuth 2.0 protected resources. Any party in possession of a bearer token (a "bearer") can use it to get access to the associated resources (without demonstrating possession of a cryptographic key). To prevent misuse, bearer tokens need to be protected from disclosure in storage and in transport. [STANDARDS-TRACK]


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×