[OAUTH-WG] I-D Action: draft-ietf-oauth-identity-assertion-authz-grant-03.txt
internet-drafts@ietf.org Wed, 22 April 2026 22:16 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: oauth@ietf.org
Delivered-To: oauth@mail2.ietf.org
Received: from [10.244.6.0] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id 7F06DE12CFA7; Wed, 22 Apr 2026 15:16:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1776896198; bh=IeIbXvmsJz2COb9napVAHb998yXgAGl/v/Tg5OqvVqk=; h=From:To:Cc:Subject:Reply-To:Date; b=NrZ59oY0LDszPRYxGO6yiHTfqmI9fP4SoSZw5ojbjNY81cf10QOfQrD7BqLaVmUc+ IlDumPvC3Ucemzlm+0pTMUNt7zqtPaiKajL63jtRPWhY22sgrWkT5sylOhcUC3/1Ou Z+ulHcjaGJjfbT8ZWgkapx74TGZOPpfIxrYbWrnA=
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.62.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <177689619842.1120235.8501085276987816236@dt-datatracker-b45949c58-5szpr>
Date: Wed, 22 Apr 2026 15:16:38 -0700
Message-ID-Hash: GEOYYG6LIATVAGGR332FUVPPD4CNDKW5
X-Message-ID-Hash: GEOYYG6LIATVAGGR332FUVPPD4CNDKW5
X-MailFrom: internet-drafts@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: oauth@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: oauth@ietf.org
Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-identity-assertion-authz-grant-03.txt
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/LdXc7YTfbx5HgFC507CrLafnEd4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>
Internet-Draft draft-ietf-oauth-identity-assertion-authz-grant-03.txt is now
available. It is a work item of the Web Authorization Protocol (OAUTH) WG of
the IETF.
Title: Identity Assertion JWT Authorization Grant
Authors: Aaron Parecki
Karl McGuinness
Brian Campbell
Name: draft-ietf-oauth-identity-assertion-authz-grant-03.txt
Pages: 58
Dates: 2026-04-22
Abstract:
This specification provides a mechanism for an application to use an
identity assertion to obtain an access token for a third-party API by
coordinating through an identity provider that the downstream
Resource Authorization Server already trusts for single sign-on
(SSO), using Token Exchange [RFC8693] and JWT Profile for OAuth 2.0
Authorization Grants [RFC7523].
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-oauth-identity-assertion-authz-grant/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-oauth-identity-assertion-authz-grant-03.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-oauth-identity-assertion-authz-grant-03
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
- [OAUTH-WG] I-D Action: draft-ietf-oauth-identity-… internet-drafts
- [OAUTH-WG] Re: I-D Action: draft-ietf-oauth-ident… Aaron Parecki