LDAPWiki: OAuth Scopes

This page (revision-6) was last changed on 29-Nov-2024 16:16 by -jim

This page was created on 29-Nov-2024 16:16 by unknown

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version	Date Modified	Size	Author	Changes ...
6	29-Nov-2024 16:16	4 KB	-jim	to previous
5	29-Nov-2024 16:16	4 KB	-jim	to previous \| to last
4	29-Nov-2024 16:16	4 KB	-jim	to previous \| to last
3	29-Nov-2024 16:16	4 KB	-jim	to previous \| to last
2	29-Nov-2024 16:16	4 KB	-jim	to previous \| to last
1	29-Nov-2024 16:16	4 KB	unknown	to last

Page References

Incoming links	Outgoing links
OAuth Scopes API-Gateway Access Token Access Token Request Access Token Response Access Token Validation Authentication Request Authorization API Authorization API Token Authorization Code Flow Authorization Request Authorization Request Parameters Claim Consent Dialog Default Profile Claims Health Relationship Trust Implicit Grant Implicit Scopes Include_granted_scopes Invalid_scope JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants Macaroons OAuth 2.0 Audience Information OAuth 2.0 Incremental Authorization OAuth 2.0 Token Exchange OAuth 2.0 Token Exchange Request OAuth 2.0 Token Introspection OAuth 2.0 Tokens OAuth Parameters Registry OAuth Scope Example OAuth Scope Validation OAuth Scopes Offline_access OpenID Connect OpenID Connect Claims OpenID Connect Scopes OpenIG Openid scope Openid-configuration Privacy Consent Directive Privileged Scope Protection API Protection API Token Refresh Token Resource Indicators for OAuth 2.0 Scopes vs Claims Scopes_supported Scp (Scopes) Claim Smart-On-FHIR profile Uma_authorization Uma_protection User-Managed Access UserInfo Request	OAuth Scopes API Access Token Access_token Application Auth 2.0 Resource Set Registration Authentication Request Authorization Policy Authorization Request Authorization Server Authorization_endpoint Best Practices CRUD Case-sensitive Claim Create Delete Examples Grant Implicit Scopes MAY MUST OAuth 2.0 OAuth Client OAuth Scope Validation OpenID Connect OpenID Connect Scopes Openid scope Privilege Privileged Scope Read Relying Party Resource Action Resource Owner Resource Parameter Resource Set Scopes vs Claims Target Resource Token_endpoint URN Unique Identifier Update User-Managed Access

Incoming links

Outgoing links

OAuth Scopes

API-Gateway
Access Token
Access Token Request
Access Token Response
Access Token Validation
Authentication Request
Authorization API
Authorization API Token
Authorization Code Flow
Authorization Request
Authorization Request Parameters
Claim
Consent Dialog
Default Profile Claims
Health Relationship Trust
Implicit Grant
Implicit Scopes
Include_granted_scopes
Invalid_scope
JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
Macaroons
OAuth 2.0 Audience Information
OAuth 2.0 Incremental Authorization
OAuth 2.0 Token Exchange
OAuth 2.0 Token Exchange Request
OAuth 2.0 Token Introspection
OAuth 2.0 Tokens
OAuth Parameters Registry
OAuth Scope Example
OAuth Scope Validation
OAuth Scopes
Offline_access
OpenID Connect
OpenID Connect Claims
OpenID Connect Scopes
OpenIG
Openid scope
Openid-configuration
Privacy Consent Directive
Privileged Scope
Protection API
Protection API Token
Refresh Token
Resource Indicators for OAuth 2.0
Scopes vs Claims
Scopes_supported
Scp (Scopes) Claim
Smart-On-FHIR profile
Uma_authorization
Uma_protection
User-Managed Access
UserInfo Request

OAuth Scopes

API
Access Token
Access_token
Application
Auth 2.0 Resource Set Registration
Authentication Request
Authorization Policy
Authorization Request
Authorization Server
Authorization_endpoint
Best Practices
CRUD
Case-sensitive
Claim
Create
Delete
Examples
Grant
Implicit Scopes
MAY
MUST
OAuth 2.0
OAuth Client
OAuth Scope Validation
OpenID Connect
OpenID Connect Scopes
Openid scope
Privilege
Privileged Scope
Read
Relying Party
Resource Action
Resource Owner
Resource Parameter
Resource Set
Scopes vs Claims
Target Resource
Token_endpoint
URN
Unique Identifier
Update
User-Managed Access

Version management

Difference between version and

At line 5 changed one line

[OAuth 2.0], a user [Grants] some [privileges] and [Resource Action] to a [OAuth Client] ([application]). As a result, an [Access_token] is issued from an [Authorization Server] to the client application. The [Resource Parameter] indicates which [Target Resource] the [OAuth Scope] applies.

[Scopes vs Claims]

At line 8 removed 3 lines

Often people confuse [Scopes vs Claims].

At line 26 removed 2 lines

At line 31 removed one line

At line 69 removed 4 lines

Introduction to Scopes

* [#3] - [Introduction to Scopes|https://curity.io/resources/learn/scopes-and-how-they-relate-to-claims/|target='_blank'] - based on information obtained 2022-05-27

* [#4] - [Grant Management for OAuth 2.0

|https://darutk.medium.com/grant-management-be9aeff3b394|target='_blank'] - based on information obtained 2022-01-09

This page (revision-6) was last changed on 29-Nov-2024 16:16 by -jim Top

Main page
About
Recent Changes
Tools Page

Lead Pages#

LDAP
Authentication,
Authorization
OAuth 2.0, OIDC, UMA
Cryptography
WEB Access Management
eDirectory, DirXML, Imanager
Microsoft Active Directory
Passwords
Authentication, Authorization
Glossary

WikiEtiquette
Find pages
Unused pages
Undefined pages
Page Index
News

Site Maintained By Computer Integrated Services

Active Sessions	826
Uptime	230d, 19h 25m 46s
Number of pages	16125