RFC 9126

OAuth 2.0 Pushed Authorization Requests, September 2021

File formats:

icon for HTML icon for text file icon for v3pdf icon for XML
Status:
PROPOSED STANDARD
Authors:
T. Lodderstedt
B. Campbell
N. Sakimura
D. Tonge
F. Skokan
Stream:
IETF
Source:
oauth (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC9126

Discuss this RFC: Send questions or comments to oauth@ietf.org

Other actions: View Errata  |  Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 9126


Abstract

This document defines the pushed authorization request (PAR) endpoint, which allows clients to push the payload of an OAuth 2.0 authorization request to the authorization server via a direct request and provides them with a request URI that is used as reference to the data in a subsequent call to the authorization endpoint.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.