[OAUTH-WG] Token Introspection and JWTs

Hi all, I have an use case where I would like to return signed JWTs from the authorization server’s introspection endpoint. In this case, I would like to give the resource server evidence about the fact the AS minted the access token and is liable for its contents (verified person data used to

Re: [OAUTH-WG] Alexey Melnikov's Discuss on draft-ietf-oauth-discovery-08: (with DISCUSS and COMMENT)

I believe that the changes in https://tools.ietf.org/html/draft-ietf-oauth-discovery-09 address the DISCUSS and comments. Please review - ideally before the upcoming telechat. Thanks again,

[OAUTH-WG] I-D Action: draft-ietf-oauth-discovery-09.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Web Authorization Protocol WG of the IETF. Title : OAuth 2.0 Authorization Server Metadata Authors : Michael B. Jones Nat

[OAUTH-WG] oauth - Requested sessions have been scheduled for IETF 101

Dear Rifaat Shekh-Yusef, The session(s) that you have requested have been scheduled. Below is the scheduled session information followed by the original request. oauth Session 1 (1:30:00) Monday, Afternoon Session II 1550-1720 Room Name: Viscount size: 175

[OAUTH-WG] OAuth Authorization Server Metadata spec addressing IESG feedback

The OAuth Authorization Server Metadata specification has been updated to address feedback received from IESG members. Changes were: * Revised the transformation between the issuer identifier and the authorization server metadata location to conform to BCP 190, as suggested by Adam Roach.