1. Session management support
The OpenID Connect working group is drafting an extension to let client applications manage end-user sessions, including logout. We intend to implement it once the specification becomes final or sufficiently stable.
2. Aggregated and distributed claims
Aggregated and distributed claims is an option for delivering UserInfo claims from third-party OpenID Connect providers.
1. OAuth 2.0 Token Exchange
The OAuth working group is drafting a protocol for a lightweight HTTP- and JSON-based Security Token Service (STS) by defining how to request and obtain security tokens from OAuth 2.0 authorization servers, including security tokens employing impersonation and delegation. See draft-ietf-oauth-token-exchange.
2. OAuth 2.0 JWT Authorization Request
Another specification draft that defines an authorisation request using JWT serialisation. The request is sent by value through request parameter or by reference through request_uri parameter that points to the JWT, allowing the request to be optionally signed and encrypted. See draft-ietf-oauth-jwsreq-06.
We are also working on a big data extension to enable plugin of advanced analytics and BI tools. Expected in Q2 2017.
Please post your comment below, or write to Connect2id support.
comments powered by Disqus