oauth2.dev

introspection_endpoint

IESG

Registry Context

This optional authorization server metadata value identifies the server's OAuth 2.0 token introspection endpoint.

Technical Summary

`introspection_endpoint` is an optional authorization server metadata value containing the URL of the authorization server's OAuth 2.0 introspection endpoint defined by RFC 7662.

When Used

Used when an authorization server publishes the location of its OAuth 2.0 token introspection endpoint in authorization server metadata.

Normative Requirements

Authorization servers

OPTIONAL
1
  1. RFC 8414 - Section 2

    The `introspection_endpoint` metadata value identifies the URL of the authorization server's OAuth 2.0 introspection endpoint..

    OPTIONAL. URL of the authorization server's OAuth 2.0 introspection endpoint [RFC7662].

Validation Guidance

error

If `introspection_endpoint` is present, verify that its value is a URL identifying the authorization server's OAuth 2.0 introspection endpoint.

info

Do not require `introspection_endpoint` to be present in authorization server metadata.

Reference

Details

Entry Id
introspection_endpoint
Metadata Name
introspection_endpoint
Metadata Description
URL of the authorization server's OAuth 2.0 introspection endpoint
Change Controller
IESG
Reference
RFC8414 - Section 2