UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 7522

Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 May 2015
Status: active
Page Count: 15
scope:

This specification defines the use of a Security Assertion Markup Language (SAML) 2.0 Bearer Assertion as a means for requesting an OAuth 2.0 access token as well as for client authentication.

Document History

IETF RFC 7522
May 1, 2015
Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants
This specification defines the use of a Security Assertion Markup Language (SAML) 2.0 Bearer Assertion as a means for requesting an OAuth 2.0 access token as well as for client authentication.

References

This document references:
IETF RFC 7521 - Assertion Framework for OAuth 2.0 Client Authentication and Authorization Grants
Published by IETF on May 1, 2015
This specification provides a framework for the use of assertions with OAuth 2.0 in the form of a new client authentication mechanism and a new authorization grant type. Mechanisms are specified for...
This document references:
IETF RFC 4648 - The Base16, Base32, and Base64 Data Encodings
Published by IETF on October 1, 2006
This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet...
This document references:
IETF RFC 6749 - The OAuth 2.0 Authorization Framework
Published by IETF on October 1, 2012
The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction...
This document references:
IETF RFC 6931 - Additional XML Security Uniform Resource Identifiers (URIs)
Published by IETF on April 1, 2013
This document expands, updates, and establishes an IANA registry for the list of URIs intended for use with XML digital signatures, encryption, canonicalization, and key management. These URIs...
This document references:
IETF RFC 7521 - Assertion Framework for OAuth 2.0 Client Authentication and Authorization Grants
Published by IETF on May 1, 2015
This specification provides a framework for the use of assertions with OAuth 2.0 in the form of a new client authentication mechanism and a new authorization grant type. Mechanisms are specified for...
This document is referenced by:
IETF RFC 7523 - JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
Published by IETF on May 1, 2015
This specification defines the use of a JSON Web Token (JWT) Bearer Token as a means for requesting an OAuth 2.0 access token as well as for client authentication.
This document is referenced by:
IETF RFC 7591 - OAuth 2.0 Dynamic Client Registration Protocol
Published by IETF on July 1, 2015
This specification defines mechanisms for dynamically registering OAuth 2.0 clients with authorization servers. Registration requests send a set of desired client metadata values to the authorization...
This document is referenced by:
EN 319 522-3 - Electronic Signatures and Infrastructures (ESI); Electronic Registered Delivery Services; Part 3: Formats
Published by ETSI on January 1, 2024
The present document specifies the format for the semantic content (metadata, evidence, identification, and Common Service Infrastructure) that flows across the different interfaces of an Electronic...
This document is referenced by:
TR 119 530 - Electronic Signatures and Infrastructures (ESI); Registered Electronic Mail (REM); Feasibility study: Interoperability profile between ETSI EN 319 532-based REM systems and PReM-based systems
Published by ETSI on February 1, 2019
The present document represents a feasibility study for an interoperability profile between systems based on ETSI EN 319 522 [i.21] / ETSI EN 319 532 [i.22] ERDS/REMS specification and UPU S52-2 PReM...
View Less
View All
Advertisement