Thanks Noem, Il giorno lun 4 apr 2022 alle ore 16:32 Steinar Noem <stei...@udelt.no> ha scritto: >> I'm looking for a standard way to express data processing purposes in access token/requests. >>E.g an access token request/response should provide an identifier linked to the reason that motivates > Maybe you’ll find the work on RAR and identity assurance in OIDF interesting? > RAR could be used for indicating a “legitimate interest”, and IA could cater for accountability.
You mean the authorization_details and verified_claims ? Interesting! Is was wondering whether there was something more concise, but I will investigate if that's viable for a machine-to-machine interaction like the one I'm working on. Thanks again, R:
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth