Supported OAuth 2.0 RFCs

Supported OAuth 2.0 RFCs


OAuth standards used by Curity.


Curity Identity Server enables the use of a wide range of identity-related standards. It supports a growing list of OAuth, OpenID Connect, SCIM and related protocols from standard bodies such as IETF, OpenID Foundation and OASIS. In addition to integration standards, a large number of user authentication standards such as Kerberos, TOTP and SAML, are also supported.

The OAuth 2.0 Authorization Framework - (RFC 6749)

Bearer Token Usage - (RFC 6750)

OAuth 2.0 Token Introspection - (RFC 7662)

OAuth 2.0 Token Revocation - (RFC 7009)

OAuth 2.0 for Native App - (BCP 212)

JSON Web Token (JWT) - (RFC 7519)

Assertion Framework for OAuth 2.0 Client Authentication and Authorization Grants - (RFC 7521)

JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants - (RFC 7523)

OAuth 2.0 Dynamic Client Registration Protocol - (RFC 7591)

Proof Key for Code Exchange by OAuth Public Clients - (RFC 7636)

Proposed Standards Supported

OAuth Device Flow

JWT Response for OAuth Token Introspection

OAuth 2.0 Assisted Token

Future standards

Curity is actively working on adding support for more parts if the OAuth 2.0 framework, if you’re missing a spec or have questions contact us for more details.

Let’s Stay in Touch!

Get the latest on identity management, API Security and authentication straight to your inbox.

Keep up with our latest articles and how-tos using RSS feeds