A Microsoft use case has come up in which people would like to perform a token
exchange for a SAML token. The spec already defines
urn:ietf:params:oauth:token-type:jwt for requesting JWT tokens. Would anybody
object to us adding urn:ietf:params:oauth:token-type:saml2 to the next draft to
also give us a standard way to ask for SAML 2.0 tokens?
It could always be done in its own spec, but adding it in Token Exchange seems
more expedient.
-- Mike
_______________________________________________
OAuth mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/oauth
