RFC 9126

OAuth 2.0 Pushed Authorization Requests, September 2021

File formats:

icon for HTML icon for text file icon for v3pdf icon for XML
Also available: XML file for editing
 
Status:
PROPOSED STANDARD
Authors:
T. Lodderstedt
B. Campbell
N. Sakimura
D. Tonge
F. Skokan
Stream:
IETF
Source:
oauth (sec)

Cite this RFC: TXT  |  XML  |   BibTeX

DOI:  https://doi.org/10.17487/RFC9126

Discuss this RFC: Send questions or comments to the mailing list oauth@ietf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 9126


Abstract

This document defines the pushed authorization request (PAR) endpoint, which allows clients to push the payload of an OAuth 2.0 authorization request to the authorization server via a direct request and provides them with a request URI that is used as reference to the data in a subsequent call to the authorization endpoint.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.




Advanced Search