I have one comment on the Security Considerations section and several
comments on the Privacy Considerations section.
*Security Considerations section(Section 5)
*
The intent of this comment is to add information, but not to change the
meaning.
Current text:
The JWT access token data
The IESG has received a request from the Web Authorization Protocol WG
(oauth) to consider the following document: - 'JSON Web Token (JWT) Profile
for OAuth 2.0 Access Tokens'
as Proposed Standard
The IESG plans to make a decision in the next few weeks, and solicits final
comments on this