[keycloak-dev] Pushed authorization requests (PAR) design draft

[guy moyo]

Hi,

I have published a draft#1 of the Pushed authorization requests (PAR) design, and I would appreciate any feedback from the community.

PAR is designed to enable OAuth clients to push the payload of an authorization request directly to the authorization server in exchange for a request URI value, which is used as reference to the authorization request payload data in a subsequent call to the authorization endpoint via the user-agent.

https://github.com/keycloak/keycloak-community/pull/255

Best Regards,

Guy