{"id":1555,"date":"2016-03-04T13:26:09","date_gmt":"2016-03-04T21:26:09","guid":{"rendered":"https:\/\/self-issued.info\/?p=1555"},"modified":"2016-03-04T13:26:09","modified_gmt":"2016-03-04T21:26:09","slug":"oauth-2-0-token-exchange-draft-04","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=1555","title":{"rendered":"OAuth 2.0 Token Exchange draft -04"},"content":{"rendered":"<p><span class=\"plain\"><img decoding=\"async\" align=\"right\" src=\"https:\/\/self-issued.info\/images\/oauth_logo_120x120.png\" alt=\"OAuth logo\"\/><\/span>A new draft of &#8220;OAuth 2.0 Token Exchange&#8221; has been published addressing review comments on the prior draft. The changes from -03 are listed here:<\/p>\n<ul>\n<li>Clarified that the &#8220;<code>resource<\/code>&#8221; and &#8220;<code>audience<\/code>&#8221; request parameters can be used at the same time (via <a href=\"http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15335.html\">http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15335.html<\/a>).<\/li>\n<li>Clarified subject\/actor token validity after token exchange and explained a bit more about the recommendation to not issue refresh tokens (via <a href=\"http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15318.html\">http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15318.html<\/a>).<\/li>\n<li>Updated the examples appendix to use an issuer value that doesn&#8217;t imply that the client issued and signed the tokens and used &#8220;<code>Bearer<\/code>&#8221; and &#8220;<code>urn:ietf:params:oauth:token-type:access_token<\/code>&#8221; in one of the responses (via <a href=\"http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15335.html\">http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15335.html<\/a>).<\/li>\n<li>Defined and registered <code>urn:ietf:params:oauth:token-type:id_token<\/code>, since some use cases perform token exchanges for ID Tokens and no URI to indicate that a token is an ID Token had previously been defined.<\/li>\n<\/ul>\n<p>The specification is available at:<\/p>\n<ul>\n<li><a href=\"http:\/\/tools.ietf.org\/html\/draft-ietf-oauth-token-exchange-04\">http:\/\/tools.ietf.org\/html\/draft-ietf-oauth-token-exchange-04<\/a><\/li>\n<\/ul>\n<p>An HTML-formatted version is also available at:<\/p>\n<ul>\n<li><a href=\"https:\/\/self-issued.info\/docs\/draft-ietf-oauth-token-exchange-04.html\">https:\/\/self-issued.info\/docs\/draft-ietf-oauth-token-exchange-04.html<\/a><\/li>\n<\/ul>\n<p>Thanks to <a href=\"https:\/\/twitter.com\/__b_c\">Brian Campbell<\/a> for doing most of the edits for this release.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A new draft of &#8220;OAuth 2.0 Token Exchange&#8221; has been published addressing review comments on the prior draft. The changes from -03 are listed here: Clarified that the &#8220;resource&#8221; and &#8220;audience&#8221; request parameters can be used at the same time (via http:\/\/www.ietf.org\/mail-archive\/web\/oauth\/current\/msg15335.html). Clarified subject\/actor token validity after token exchange and explained a bit more about [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8,27,26,25],"tags":[],"class_list":["post-1555","post","type-post","status-publish","format-standard","hentry","category-claims","category-json","category-oauth","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/1555","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1555"}],"version-history":[{"count":2,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/1555\/revisions"}],"predecessor-version":[{"id":1557,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/1555\/revisions\/1557"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1555"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1555"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1555"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}