Skip to main content

7. IANA Considerations

7.1. Media Type Registration

7.1.1. Registry Content

This section registers "application/at+jwt", a new media type [RFC2046] in the "Media Types" registry [IANA.MediaTypes] in the manner described in [RFC6838]. It can be used to indicate that the content is an access token encoded in JWT format.

Type name: Application

Subtype name: at+jwt

Required parameters: N/A

Optional parameters: N/A

Encoding considerations: Binary; JWT values are encoded as a series of base64url-encoded values (with trailing '=' characters removed), some of which may be the empty string, separated by period ('.') characters.

Security considerations: See the Security Considerations section of RFC 9068.

Interoperability considerations: N/A

Published specification: RFC 9068

Applications that use this media type: Applications that access resource servers using OAuth 2.0 access tokens encoded in JWT format

Fragment identifier considerations: N/A

Additional information:

  • Magic number(s): N/A
  • File extension(s): N/A
  • Macintosh file type code(s): N/A

Person & email address to contact for further information: Vittorio Bertocci <[email protected]>

Intended usage: COMMON

Restrictions on usage: None

Author: Vittorio Bertocci <[email protected]>

Change controller: IETF

Provisional registration?: No

7.2. Claims Registration

Section 2.2.3.1 of this specification refers to the attributes "roles", "groups", "entitlements" defined in [RFC7643] to express authorization information in JWT access tokens. This section registers those attributes as claims in the "JSON Web Token (JWT)" IANA registry introduced in [RFC7519].

7.2.1. Registry Content

7.2.1.1. Roles

Claim Name: roles

Claim Description: Roles

Change Controller: IETF

Specification Document(s): Section 4.1.2 of [RFC7643] and Section 2.2.3.1 of RFC 9068

7.2.1.2. Groups

Claim Name: groups

Claim Description: Groups

Change Controller: IETF

Specification Document(s): Section 4.1.2 of [RFC7643] and Section 2.2.3.1 of RFC 9068

7.2.1.3. Entitlements

Claim Name: entitlements

Claim Description: Entitlements

Change Controller: IETF

Specification Document(s): Section 4.1.2 of [RFC7643] and Section 2.2.3.1 of RFC 9068

Last updated on