oauth2.dev

orig

IESG

Registry Context

`orig` is an originating Identity String claim.

Technical Summary

PASSporT: Personal Assertion Token Section 5.2.1 defines `orig` for JWT claim sets with the registry description: Originating Identity String.

When Used

Used in JWTs that follow PASSporT: Personal Assertion Token Section 5.2.1.

Normative Requirements

`orig` claim

MUST
1
  1. 8225 - Section 5.2.1

    contain exactly one identity claim object..

    Condition: When included in a PASSporT object.

    There MUST be exactly one "orig" claim with exactly one identity claim object in a PASSporT object.

Validation Guidance

error

When processing `orig`, apply the syntax and semantics from PASSporT: Personal Assertion Token Section 5.2.1.

info

Treat `orig` as profile-specific unless the JWT explicitly follows the referenced specification.

Reference

Details

Entry Id
orig
Claim Name
orig
Claim Description
Originating Identity String
Change Controller
IESG
Reference
RFC8225 - Section 5.2.1