0

I'm trying to do a PoC on FAPI 2.0 for which I want to have an authorization server that supports FAPI2.0 along with the control over IDP integration, user database, OIDC provider and onboarding third party via Thales OneWelcome(CIAM).

According the the specification of FAPI 2.0 the OAuth server should support below features:

  • PAR (Pushed Authorization Request) endpoint.

  • JAR (JWT Authorization Requests) signed by client keys.

  • JARM (JWT Authorization Responses): Not sure if it is a requirement anymore in FAPI 2.0

  • Token Binding: via DPoP or MTLS.

  • PARE (Pushed Authorization Request Endpoint) security.

Does, Spring Authorization Server (https://github.com/spring-projects/spring-authorization-server) supports FAPI 2.0?

Improve this question
Related questions
291
What is the purpose of the implicit grant authorization type in OAuth 2?
688
Google OAuth 2 authorization - Error: redirect_uri_mismatch
4
Spring fails for userinfo endpoint returning signed JWT
Load 7 more related questions Show fewer related questions

0

Reset to default

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.