OAuth 2.0 Token Introspection
RFC 7662, “OAuth 2.0 Token Introspection”, is a Proposed Standard document published in October 2015 by J. Richer. The canonical text is published by the RFC Editor.
Abstract
This specification defines a method for a protected resource to query an OAuth 2.0 authorization server to determine the active state of an OAuth 2.0 token and to determine meta-information about this token. OAuth 2.0 deployments can use this method to convey information about the authorization context of the token from the authorization server to the protected resource.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 7662 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7661 Updating TCP to Support Rate-Limited Traffic
- RFC 7663 Report from the IAB Workshop on Stack Evolution in a Middlebox Internet
- RFC 7660 Diameter Congestion and Filter Attributes
- RFC 7664 Dragonfly Key Exchange
- RFC 7659 Definitions of Managed Objects for Network Address Translators
- RFC 7665 Service Function Chaining Architecture
- RFC 7658 Deprecation of MIB Module NAT-MIB: Managed Objects for Network Address Translators
- RFC 7666 Management Information Base for Virtual Machines Controlled by a Hypervisor