Difference between revisions of "Authorization Request"

Revision as of 10:03, 25 March 2021

Simply put the Authorization Request is sent from one service to another to access for access to a protected resource.

In the context of Identity Management the Authorization Request is sent by the Relying Party (RP) to an Authorization Endpoint to acquire sufficient information about the user to establish an authenticated communication session.
The Authorization Request was formally described in OAuth 2.0 to be a collection of query parameters to be added to a URL for exmaple /Auhtorize?parm1=value1& other clam ins as appropriate.

A series of RFCs on extensions to the Authorization Request were developed during 2020. These are well describe in a presentation for Auth0.

@@ Line 4: / Line 4: @@
 ==Context==
 * In the context of [[Identity Management]] the [[Authorization Request]] is sent by the [[Relying Party]] (RP) to an [[Authorization Endpoint]] to acquire sufficient information about the user to establish an authenticated communication session.
-* The [[Authorization Request]] was formally described in [[Oauth 2.0]] to be a collection of query parameters to be added to a URL for exmaple /Auhtorize?parm1=value1& other clam ins as appropriate.
+* The [[Authorization Request]] was formally described in [[OAuth 2.0]] to be a collection of query parameters to be added to a URL for exmaple /Auhtorize?parm1=value1& other clam ins as appropriate.
+==Problems==
+==Solutions==
+* A series of RFCs on extensions to the [[Authorization Request]] were developed during 2020. These are well describe in a [https://auth0.com/blog/identity-unlocked-explained-season-2-ep-2 presentation for Auth0].
 ==References==