Implement built-in delegation/impersonation support (RFC8693)
See original GitHub issueThe OAuth 2.0 token exchange specification - originally known as “OAuth 2.0 Token Exchange: an STS for the REST of us” - was finally standardized last year.
Note: OpenIddict 3.0 already supports the requirements brought by this specification (like being able to set multiple audience
or resource
parameters, which was explicitly disallowed in the original OAuth 2.0 specification), as they were already part of ASOS 2.0 and OpenIddict 2.0.
Issue Analytics
- State:
- Created 2 years ago
- Reactions:8
- Comments:6 (3 by maintainers)
Top Results From Across the Web
RFC 8693 - OAuth 2.0 Token Exchange
Delegation vs. Impersonation Semantics. One common use case for an STS (as alluded to in the previous section) is to allow a resource...
Read more >Impersonation Approaches with OAuth and OpenID Connect
There are different approaches for implementing impersonation and delegation with the Curity Identity Server: Exchanging Tokens; User Assertion Grant ...
Read more >Token Exchange
The OAuth Token Exchange specification (RFC 8693) describes a general purpose ... Common use cases are creating tokens for impersonation and delegation ......
Read more >Implementing Impersonation | Curity Identity Server
Learn how to implement an Impersonation Flow. ... Implementing Impersonation. The actor attribute will end up in the act claim as specified in...
Read more >OAuth 2.0 Token Exchange
The claim, as explained in RFC 8693, is a JSON object that specifies the party or parties allowed to act on behalf of...
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
hi @kevinchalet, could you please explain how far this feature from completion and what is required to complete it? I most likely need this in my project soon, would be great if it supported out of the box in this awesome project
any news on this?