feat(jans-auth-server): UMA: require client requested scopes to be pre-registered

JanssenProject / jans

An open source enterprise digital identity platform for CIAM or workforce... Janssen is a distribution of standards-based, developer friendly, components that are engineered to work together in any cloud. #OAuth #OpenID #FIDO

https://docs.jans.io

Apache License 2.0

480 stars 75 forks source link

feat(jans-auth-server): UMA: require client requested scopes to be pre-registered #338

Open martynaslawinska opened 3 years ago

martynaslawinska commented 3 years ago

nynymike commented on Oct 20, 2017 This diagram uses a Venn diagram to represent the relationship between scopes associated with a ticket, scopes requested by a client, and scopes registered by a client. You could express this as: ticket scopes ∪ (requested scopes ∩ registered scopes).

We need to add a JSON property for oxAuth which specifies whether clients need to have scopes pre-registered.

ossdhaval commented 2 years ago

Tagging @nynymike as the original author