·
6 commits
to main
since this release
- Moved ID-JAG definition to document root instead of nested under Token Exchange
- Added proposed OpenID Connect tenant claim
- Added authentication claims from ID Token
- Adopted standard OAuth 2.0 role names instead of Resource App or Resource App's Authorization Server
- Updated sequence diagram
- Updated all inconsistent references of ID-JAG to "Identity Assertion JWT Authorization Grant"
- Updated section references with more specific links
- Added reference to scope parameter in ID-JAG processing rules
- Added a section discussing client ID mapping and reference to Client ID Metadata Document
- Added recommendations for refresh tokens