subject:"\[OAUTH\-WG\] OAuth JWT Bearer Token Profile"

Re: [OAUTH-WG] OAuth JWT Bearer Token Profile

2011-03-28 Thread Mike Jones

Jones Sent: Wednesday, March 16, 2011 10:57 AM To: oauth@ietf.org Subject: [OAUTH-WG] OAuth JWT Bearer Token Profile I've just published an OAuth JWT Bearer Token Profile<http://self-issued.info/docs/draft-jones-oauth-jwt-bearer.html>. It defines a means of using a JSON Web Token (JWT) b

Re: [OAUTH-WG] OAuth JWT Bearer Token Profile

2011-03-17 Thread Chuck Mortimore

Good stuff Mike Having an explicit error message for "unsupported_alg" might be useful for this spec. I doubt all implementations will implement all the algs in the JWT spec. -cmort On 3/16/11 9:57 AM, "Mike Jones" wrote: I've just published an OAuth JWT Bearer Token Profile

[OAUTH-WG] OAuth JWT Bearer Token Profile

2011-03-16 Thread Mike Jones

I've just published an OAuth JWT Bearer Token Profile. It defines a means of using a JSON Web Token (JWT) bearer token to request an OAuth 2.0 access token. This profile is intentionally strongly based upon the SAML 2.0 Bearer As