Skip to content

Add something in Access Token Privilege Restriction about the first-party use case #87

New issue
New issue
Open
Open
Add something in Access Token Privilege Restriction about the first-party use case#87
Labels
draft-00-feedbackFeedback from reviews of draft -00questionFurther information is requested
@aaronpk

Description

@aaronpk
aaronpk
opened on Sep 8, 2021

From Vittorio:

§7.4.5

Along the same lines of the comments about delegated authorization earlier for §7.2.3. I think it would be useful to acknowledge here that ATs might carry, and RSs might expect, authorization information that go beyond the delegated authorization for 3rd party API case that is core to OAuth- and remind the reader that those mechanisms are out of scope for oauth hence they shouldn’t expect those aspects to be addressed/handled/regulated by this specification.

Metadata

Metadata

Assignees

No one assigned

    Labels

    draft-00-feedbackFeedback from reviews of draft -00questionFurther information is requested

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions