Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-8440

Pluggable OAuth2 Access Token Format

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Duplicate
    • Affects Version/s: 13.0.0, 13.5.0, 13.5.1, 14.0.0, 14.1.0, 14.1.1, 14.5.0, 14.5.1, 5.5.1
    • Fix Version/s: None
    • Component/s: oauth2
    • Labels:
    • Support Ticket IDs:

      Description

      The current OAuth2 access_token is not pluggable - it's a stateful proprietary opaque token type.

      Ideally the access_token format should be pluggable based on implementation. For example, the ability to leverage a JWT format, with an additional scriptable component to control attributes within the JWT similar to the scriptable OIDC id_token.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                simon.moffatt Simon Moffatt
              • Votes:
                7 Vote for this issue
                Watchers:
                13 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: