From Idea to Standard: How the JWT Profile for OAuth 2.0 Access Tokens Became RFC9068

andrea.chiarelli July 6, 2023, 2:09pm 12

I think that the azp claim was borrowed from the OIDC specification.
This post briefly explains why it is in our access tokens.

As far as I know, there are no other RFCs that define access tokens in JWT format.

1 Like

Topic		Replies	Views
RFC or standard for JWT access tokens? Help jwt	3	3601	September 3, 2019
Alternative to clientid/secret with JWT Client Authentication (RFC 7523)? Help	6	4766	December 20, 2018
Cannot add standard claim to accessToken, only to idToken JWT.io	1	3452	January 21, 2020
Add client_id claim to a JWT payload Help login-experience , new-universal-login-experience	3	29	September 12, 2024
Overly Opinionated Spec Implementation Help	7	3175	June 5, 2019