{"id":2036,"date":"2020-01-15T15:07:42","date_gmt":"2020-01-15T23:07:42","guid":{"rendered":"https:\/\/self-issued.info\/?p=2036"},"modified":"2020-01-15T15:07:42","modified_gmt":"2020-01-15T23:07:42","slug":"oauth-2-0-token-exchange-is-now-rfc-8693","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=2036","title":{"rendered":"OAuth 2.0 Token Exchange is now RFC 8693"},"content":{"rendered":"<p><span class=\"plain\"><img decoding=\"async\" align=\"right\" alt=\"OAuth logo\" src=\"https:\/\/self-issued.info\/images\/oauth_logo_120x120.png\"><\/span>The OAuth 2.0 Token Exchange specification  is now <a href=\"https:\/\/www.rfc-editor.org\/rfc\/rfc8693.html\">RFC 8693<\/a>.  The abstract of the specification is:<\/p>\n<blockquote><p>\nThis specification defines a protocol for an HTTP- and JSON-based Security Token Service (STS) by defining how to request and obtain security tokens from OAuth 2.0 authorization servers, including security tokens employing impersonation and delegation.<\/p><\/blockquote>\n<p>This specification standardizes an already widely-deployed pattern in production use by Box, Microsoft, RedHat, Salesforce, and many others.  Thanks to all of you who helped make a standard for this important functionality!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The OAuth 2.0 Token Exchange specification is now RFC 8693. The abstract of the specification is: This specification defines a protocol for an HTTP- and JSON-based Security Token Service (STS) by defining how to request and obtain security tokens from OAuth 2.0 authorization servers, including security tokens employing impersonation and delegation. This specification standardizes an [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[32,26,25],"tags":[],"class_list":["post-2036","post","type-post","status-publish","format-standard","hentry","category-ietf","category-oauth","category-specifications"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2036","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2036"}],"version-history":[{"count":1,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2036\/revisions"}],"predecessor-version":[{"id":2037,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/2036\/revisions\/2037"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2036"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2036"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2036"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}