Supported Specifications

IdentityServer implements the following specifications:

OpenID Connect

• OpenID Connect Core 1.0 (spec)

• OpenID Connect Discovery 1.0 (spec)

• OpenID Connect RP-Initiated Logout 1.0 - draft 01 (spec)

• OpenID Connect Session Management 1.0 - draft 30 (spec)

• OpenID Connect Front-Channel Logout 1.0 - draft 04 (spec)

• OpenID Connect Back-Channel Logout 1.0 - draft 06 (spec)

OAuth 2.0

• OAuth 2.0 (RFC 6749)

• OAuth 2.0 Bearer Token Usage (RFC 6750)

• OAuth 2.0 Multiple Response Types (spec)

• OAuth 2.0 Form Post Response Mode (spec)

• OAuth 2.0 Token Revocation (RFC 7009)

• OAuth 2.0 Token Introspection (RFC 7662)

• Proof Key for Code Exchange (RFC 7636)

• JSON Web Tokens for Client Authentication (RFC 7523)

• OAuth 2.0 Device Authorization Grant (RFC 8628)

• OAuth 2.0 Mutual TLS Client Authentication and Certificate-Bound Access Tokens (RFC 8705)

• JWT Secured Authorization Request (draft)