LASCON: Three Profiels of OAuth2 for Identity and Access Management
Download as PPTX, PDF1 like1,062 views
The document outlines various RFCs related to OAuth 2.0, which cover identity and access management standards. It includes specifications for authorization frameworks, token usage, security considerations, and client authentication methods. Key topics also encompass dynamic client registration and token introspection protocols.
LASCON: Three Profiels of OAuth2 for Identity and Access Management
- 1. Three profiles of OAuth2 for Identity and Access Management Michael Schwartz CEO, Gluu
- 6. RFC 6749 The OAuth 2.0 Authorization Framework RFC 6750 The OAuth 2.0 Authorization Framework: Bearer Token Usage RFC 6755 An IETF URN Sub-Namespace for OAuth RFC 6819 OAuth 2.0 Threat Model and Security Considerations Errata RFC 7009 OAuth 2.0 Token Revocation RFC 7519 JSON Web Token (JWT) RFC 7521 Assertion Framework for OAuth 2.0 Client Authentication and Authorization Grants RFC 7522 SAML 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants RFC 7523 JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants RFC 7591 OAuth 2.0 Dynamic Client Registration Protocol RFC 7592 OAuth 2.0 Dynamic Client Registration Management Protocol RFC 7636 Proof Key for Code Exchange by OAuth Public Clients RFC 7662 OAuth 2.0 Token Introspection Errata RFC 7800 Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)