From Idea to Standard: How the JWT Profile for OAuth 2.0 Access Tokens Became RFC9068

This article is the story of how this issue bugged me so much that I took it on myself to work with the IETF standards community to try fixing it, culminating in the publication of a new standard document describing how to encode and validate an OAuth 2.0 AT in JWT format.
Read more…

Brought to you by @Vittorio

From Idea to Standard: How the JWT Profile for OAuth 2.0 Access Tokens Became RFC90681176×1056 167 KB

Folks! Let us know if you have any comments or thoughts!

This topic was automatically closed after 24 days. New replies are no longer allowed.

Is this standard implemented in Auth0? I can’t find a way to request Access Tokens in the RFC 9068 format.