rfc.md

July 15, 2021 · View on GitHub

In this talk you'll learn about the latest developments with the OAuth and OIDC specs directly from the standards group. The latest additions to the specs enable richer experiences and better secu...

:calendar: published on: 2020-04-09
tags: oauth2, security, rfc

The OAuth 2.0 Authorization Framework: Bearer Token Usage

^{https://tools.ietf.org/html/rfc6750}

This specification describes how to use bearer tokens in HTTP requests to access OAuth 2.0 protected resources. Any party in possession of a bearer token (a "bearer") can use it to get access to the ...

tags: oauth2, rfc

Hypertext Transfer Protocol -- HTTP/1.1

^{https://tools.ietf.org/html/rfc2616}

tags: http, rfc

The OAuth 2.0 Authorization Framework

^{https://tools.ietf.org/html/rfc6749}

The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either of a behalf of a resource owner by orchestrating an approval interaction bet...

tags: oauth2, rfc

Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile

^{https://tools.ietf.org/html/rfc5280}

This specification is one part of a family of standards for the X.509 Public Key Infrastructure (PKI) for the Internet.

tags: security, cryptography, x509, rfc

JSON Web Token (JWT) - specification / spec

^{https://tools.ietf.org/html/rfc7519}

Abstract

JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is used as the payl...

tags: jwt, rfc, specifications