Skip to content

Support PAR standard #1329

New issue
New issue
Open
Open
Support PAR standard#1329
Labels
openid-connectstandardsIssues that refer to IETF, W3C or other standards
@mooreds

Description

@mooreds
mooreds
opened on Jul 30, 2021

Support PAR standard

Problem

Support the Pushed Authorization Request IETF standard.

"PAR fosters OAuth security by providing clients a simple means for a confidential and integrity protected authorization request. "

This basically lets a client POST to start the OAuth flow, rather than using the GET.

Solution

Implement the RFC. https://www.rfc-editor.org/rfc/rfc9126.html

Alternatives/workarounds

n/a

Additional context

Just approved as of today: https://datatracker.ietf.org/doc/draft-ietf-oauth-par/ https://mailarchive.ietf.org/arch/msg/oauth/PgPAJq-zrYOXN1l9AAOjEFs_vvY/

Related

Community guidelines

All issues filed in this repository must abide by the FusionAuth community guidelines.

How to vote

Please give us a thumbs up or thumbs down as a reaction to help us prioritize this feature. Feel free to comment if you have a particular need or comment on how this feature should work.

Metadata

Metadata

Assignees

No one assigned

    Labels

    openid-connectstandardsIssues that refer to IETF, W3C or other standards

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions