Request For Comments storage

Documents by T. Lodderstedt

2013, RFC6819: OAuth 2.0 Threat Model and Security Considerations
2013, RFC7009: OAuth 2.0 Token Revocation
2020, RFC8705: OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens
2021, RFC9126: OAuth 2.0 Pushed Authorization Requests
2023, RFC9396: OAuth 2.0 Rich Authorization Requests
2023, RFC9449: OAuth 2.0 Demonstrating Proof of Possession (DPoP)
2025, RFC9700: Best Current Practice for OAuth 2.0 Security
2025, RFC9701: JSON Web Token (JWT) Response for OAuth Token Introspection


Meanwhile in the world...

Drupal CMS