...
- All Goals fromĀ Usage: Application to Resource Server Requirements
- Provide a way to get identifying information for both the Client Application and the End User.
- This identifiers should be used for both authorization and audit logging.
- Define a policy on Token Lifespan of 10 9 hours forĀ password grant.
Out of Scope
...