On 2023-04-18 02:51, Vittorio Bertocci wrote:
Hi Evert,
The audience parameter isn’t standard- it was implemented before a
standard modeling the corresponding concept (resource indicators) was
introduced in
https://www.rfc-editor.org/rfc/rfc8707.html.
Audience is mostly an alias of the
Hi Evert,
The audience parameter isn’t standard- it was implemented before a standard
modeling the corresponding concept (resource indicators) was introduced in
https://www.rfc-editor.org/rfc/rfc8707.html.
Audience is mostly an alias of the resource parameter, hence i wouldn’t be
too worried about
These parameters seem to be similar to the "resource" parameter defined
in RFC8707 (https://www.rfc-editor.org/rfc/rfc8707.html).
Maybe the vendors implemented their non-standard extensions before the
RFC was published.
Best regards,
Karsten
On 17.04.2023 23:57, Evert Pot wrote:
Hi list,
Hi list,
I'm the author a OAuth2 client library[1]. I received a feature request
to support the "audience" parameter on client_credentials, as seen on
the following two server implementations:
* Auth0:
https://auth0.com/docs/api/authentication?http#authorization-code-flow-with-pkce45
*
