OAuth 2.0 Pushed Authorization Requests, September 2021
- File formats:
- PROPOSED STANDARD
- T. Lodderstedt
- oauth (sec)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
This document defines the pushed authorization request (PAR) endpoint, which allows clients to push the payload of an OAuth 2.0 authorization request to the authorization server via a direct request and provides them with a request URI that is used as reference to the data in a subsequent call to the authorization endpoint.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.