OAuth 2.0 for First-Party Native Applications

This document defines the Authorization Challenge Endpoint, which supports a first-party native client that wants to control the process of obtaining authorization from the user using a native experience.¶

In many cases, this can provide an entirely browserless OAuth 2.0 experience suited for native applications, only delegating to the browser in unexpected, high risk, or error conditions.¶

The latest revision of this draft can be found at https://aaronpk.github.io/oauth-first-party-native-apps/draft-parecki-oauth-first-party-native-apps.html . Status information for this document may be found at https://datatracker.ietf.org/doc/draft-parecki-oauth-first-party-native-apps/ .¶

Discussion of this document takes place on the Web Authorization Protocol Working Group mailing list (mailto:oauth@ietf.org ), which is archived at https://mailarchive.ietf.org/arch/browse/oauth/ . Subscribe at https://www.ietf.org/mailman/listinfo/oauth/ .¶

Source for this draft and an issue tracker can be found at https://github.com/aaronpk/oauth-first-party-native-apps .¶

Leave a Comment