> On Apr 1, 2022, at 3:24 AM, Dhaura Pathirana <dhaurapathir...@gmail.com>
> wrote:
>
> I would like to know if anyone has seen this (listing token metadata) as a
> common use case in OAuth2 and a standard way of doing it had been proposed
> before?
OAuth Token Introspection (RFC 7662) defines a way to query for active state
and meta-info.
However, its use is defined only for protected resources, and not the resource
owner or the client the token was issued to.
-DW
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
