draft-ietf-oauth-rfc7523bis-02

-02

• Added Filip Skokan as an author.
• Applied Brian Campbell's suggestions made at IETF 122. Specifically:
• Focused RFC 7523 updates on JWT client authentication case.
• Described client responsibilities for the audience value of authorization grants. No longer mandate that the audience for authorization grants be the issuer identifier, so as to make a minimum of breaking changes.
• Deprecated the use of SAML assertions for client authentication.

draft-ietf-oauth-rfc7523bis-01

-01

• Reworked to make updates to RFC 7523, rather than replacing it.

• Removed updates to RFC 9101.

• Added reference to the University of Stuttgart paper [Audience.Injection].

draft-ietf-oauth-rfc7523bis-00

Initial working group draft, replacing draft-jones-oauth-rfc7523bis-00

draft-jones-oauth-rfc7523bis-00

Publish initial individual draft on date of OAuth interim call covering this topic.