Overview#
Grant Management for OAuth 2.0 is an FAPI Internet Draft within OpenID Foundation which allows an OAuth Client to explicitly manage existing grants.The basic design principle is that creation and update of grants is always requested using an OAuth authorization request while querying the status of a grant and revoking it is performed using the new Grant Management API
The underlying assumption is that creation and updates of grants almost always require interaction with the resource owner. Moreover, the client is supposed to manage the grant ids along with the respective tokens on its own without support from the authorization server.