oauth2.dev

device_authorization_endpoint

IESG

Registry Context

The device_authorization_endpoint metadata value is an optional URL identifying the authorization server's device authorization endpoint.

Technical Summary

RFC 8628 Section 4 defines device_authorization_endpoint as an OPTIONAL OAuth 2.0 Authorization Server Metadata key whose value is the URL of the device authorization endpoint defined in RFC 8628 Section 3.1.

When Used

Used when support for the OAuth 2.0 Device Authorization Grant is declared through OAuth 2.0 Authorization Server Metadata.

Normative Requirements

Authorization servers

OPTIONAL
1
  1. RFC 8628 - Section 4

    May include device_authorization_endpoint as a metadata key whose value is the URL of its device authorization endpoint..

    Condition: When publishing OAuth 2.0 Authorization Server Metadata for the Device Authorization Grant.

    device_authorization_endpoint OPTIONAL. URL of the authorization server's device authorization endpoint

Validation Guidance

error

If present, verify that device_authorization_endpoint is a URL identifying the authorization server's device authorization endpoint defined in RFC 8628 Section 3.1.

info

Do not require device_authorization_endpoint to be present; RFC 8628 Section 4 defines the metadata key as OPTIONAL.

Reference

Details

Entry Id
device_authorization_endpoint
Metadata Name
device_authorization_endpoint
Metadata Description
URL of the authorization server's device authorization endpoint
Change Controller
IESG
Reference
RFC8628 - Section 4