OAuth Token Profile


OAuth 2.0 does not mandate any Token Type within the Core specifications. RFC 6749.

The User Managed Access Protection API indicates The Authorization Server MUST OAuth Token Profile declare within the Uma-configuration.

There is the JSON Web Tokens.

Access Token Response shows the Token_type.

UMA Bearer Token Profile

More Information#

There might be more information for this subject on one of the following: