Draft 09 of the OAuth 2.0 Bearer Token Specification has been published, which incorporates Working Group Last Call feedback. It contains the following changes:
- Use definitions from [I-D.ietf-httpbis-p7-auth] rather than [RFC2617].
- Update credentials definition to conform to [I-D.ietf-httpbis-p7-auth].
- Further clarified that query parameters may occur in any order.
- Specify that error_description is UTF-8 encoded (matching the core specification).
- Registered “Bearer” Authentication Scheme in Authentication Scheme Registry defined by [I-D.ietf-httpbis-p7-auth].
- Updated references to oauth-v2, httpbis-p1-messaging, and httpbis-p7-auth drafts.
- Other wording improvements not introducing normative changes.
The draft is available at these locations:
- http://www.ietf.org/internet-drafts/draft-ietf-oauth-v2-bearer-09.pdf
- http://www.ietf.org/internet-drafts/draft-ietf-oauth-v2-bearer-09.txt
- http://www.ietf.org/internet-drafts/draft-ietf-oauth-v2-bearer-09.xml
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer-09.html
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer-09.pdf
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer-09.txt
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer-09.xml
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer.html (will point to new versions as they are posted)
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer.pdf (will point to new versions as they are posted)
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer.txt (will point to new versions as they are posted)
- https://self-issued.info/docs/draft-ietf-oauth-v2-bearer.xml (will point to new versions as they are posted)
- http://svn.openid.net/repos/specifications/oauth/2.0/ (Subversion repository, with html, pdf, txt, and html versions available)