Skip to main content

7. IANA Considerations

7.1. OAuth Authorization Server Metadata Registry

This specification establishes the "OAuth Authorization Server Metadata" registry in the OAuth Parameters registry and registers the metadata parameter names defined in Section 2.

The registration procedure is "Specification Required" [RFC8126] and requires review by a designated expert. However, to reserve values, the designated expert MAY approve registrations on a provisional basis without prior review.

Registration requests SHOULD include the following information, conforming to the appropriate fields of the OAuth Authorization Server Metadata registry:

  • Metadata Name: The name of the metadata parameter to be registered. Names are ASCII [USASCII] strings for case-insensitive matching. It is RECOMMENDED that names not contain characters other than _ (underscore), - (hyphen), and . (period).

  • Metadata Description: Brief description of the metadata.

  • Change Controller: For IETF specifications, this is "IESG". For others, give the name of the responsible party (IETF working group name if the specification is being developed within an IETF working group, or a personal name otherwise).

  • Specification Document(s): Reference to the publishable specification that contains the initial definition of this parameter.

The initial contents of the registry are:

  • Metadata Name: issuer

  • Metadata Description: Authorization server's issuer identifier

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: authorization_endpoint

  • Metadata Description: URL of the authorization server's authorization endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: token_endpoint

  • Metadata Description: URL of the authorization server's token endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: jwks_uri

  • Metadata Description: URL of the authorization server's JWK Set document

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: registration_endpoint

  • Metadata Description: URL of the authorization server's dynamic client registration endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: scopes_supported

  • Metadata Description: JSON array of supported scope values

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: response_types_supported

  • Metadata Description: JSON array of supported response_type values

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: response_modes_supported

  • Metadata Description: JSON array of supported response_mode values

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: grant_types_supported

  • Metadata Description: JSON array of supported grant type values

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: token_endpoint_auth_methods_supported

  • Metadata Description: JSON array of supported token endpoint authentication methods

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: token_endpoint_auth_signing_alg_values_supported

  • Metadata Description: JSON array of JWS signing algorithms supported at the token endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: service_documentation

  • Metadata Description: URL of a page containing human-readable information about the authorization server

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: ui_locales_supported

  • Metadata Description: JSON array of supported UI locales

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: op_policy_uri

  • Metadata Description: URL relating to the OP's policy

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: op_tos_uri

  • Metadata Description: URL relating to the OP's terms of service

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: revocation_endpoint

  • Metadata Description: URL of the authorization server's revocation endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: revocation_endpoint_auth_methods_supported

  • Metadata Description: JSON array of supported revocation endpoint authentication methods

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: revocation_endpoint_auth_signing_alg_values_supported

  • Metadata Description: JSON array of JWS signing algorithms supported at the revocation endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: introspection_endpoint

  • Metadata Description: URL of the authorization server's introspection endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: introspection_endpoint_auth_methods_supported

  • Metadata Description: JSON array of supported introspection endpoint authentication methods

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: introspection_endpoint_auth_signing_alg_values_supported

  • Metadata Description: JSON array of JWS signing algorithms supported at the introspection endpoint

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: code_challenge_methods_supported

  • Metadata Description: JSON array of supported PKCE code challenge methods

  • Change Controller: IESG

  • Specification Document(s): Section 2 of RFC 8414

  • Metadata Name: signed_metadata

  • Metadata Description: Metadata values as a signed JWT

  • Change Controller: IESG

  • Specification Document(s): Section 2.1 of RFC 8414

7.2. Updated Registration Instructions

IANA has changed the registration procedure for the IANA "OAuth Token Endpoint Authentication Methods" registry [IANA.OAuth.Parameters] to "Specification Required" (from "Expert Review") and changed the registration procedure for the IANA "OAuth Access Token Types" registry [IANA.OAuth.Parameters] to "Specification Required" (from "Expert Review").

7.3. Well-Known URI Registry

This specification registers the well-known URI oauth-authorization-server in the IANA "Well-Known URIs" registry established by RFC 5785 [RFC5785].

  • URI Suffix: oauth-authorization-server
  • Change Controller: IESG
  • Specification Document(s): RFC 8414
  • Related Information: (none)
Last updated on