Internet-Draft draft-ietf-oauth-rfc7523bis-02.txt is now available. It is a
work item of the Web Authorization Protocol (OAUTH) WG of the IETF.
Title: Updates to Audience Values for OAuth 2.0 Authorization Servers
Authors: Michael B. Jones
Brian Campbell
Chuck Mortimore
Filip Skokan
Name: draft-ietf-oauth-rfc7523bis-02.txt
Pages: 15
Dates: 2025-07-22
Abstract:
This specification updates the requirements for audience values for
tokens whose audience is an OAuth 2.0 authorization server to address
a security vulnerability identified in the previous requirements for
those audience values in multiple OAuth 2.0 specifications.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-oauth-rfc7523bis/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-rfc7523bis-02
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-oauth-rfc7523bis-02
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
OAuth mailing list -- oauth@ietf.org
To unsubscribe send an email to oauth-le...@ietf.org
