slow_
Registry Context
slow_down indicates that device-flow authorization is still pending. The client may continue polling, but must add 5 seconds to the polling interval for the next and all later requests.
Technical Summary
RFC 8628 defines slow_down for device authorization grant token endpoint responses and registers it in the OAuth Extensions Error Registry. Its polling behavior is a variant of authorization_pending with a mandatory 5-second interval increase.
When Used
Use when documenting or validating device authorization grant token endpoint error handling.
Normative Requirements
Clients
RFC 8628 - Section 3.5
increase the polling interval by 5 seconds for this and all subsequent requests.
Condition: when the token endpoint returns the slow_down error
the interval MUST be increased by 5 seconds for this and all subsequent requests
RFC 8628 - Section 3.5
wait at least the applicable polling interval before each new access token request.
Condition: when continuing to poll, including after a slow_down interval increase
Before each new request, the client MUST wait at least the number of seconds specified by the "interval" parameter
Validation Guidance
Confirm that slow_down handling adds 5 seconds to the polling interval used for the next and all subsequent requests.
Confirm that the client waits at least the resulting polling interval before each subsequent access token request.
Reference
Details
- Entry Id
slow_down - Name
slow_down - Usage Location
Token endpoint response- Protocol Extension
RFC8628- Change Controller
IETF- Reference
RFC8628 - Section 3.5