Scribd
Upload
61 views

Java Web Token

This document describes JSON Web Tokens (JWT) and includes two registries: 1) JSON Web Token Claims that lists standard claims and their descriptions as defined in RFCs and other specifications. 2) JWT Confirmation Methods that lists methods for confirming JWTs and their descriptions as defined in RFC 7800. The document provides information on the creation date, formats available, registration procedures, and experts for each registry.

Uploaded by

Rakesh Singh
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
61 views

Java Web Token

This document describes JSON Web Tokens (JWT) and includes two registries: 1) JSON Web Token Claims that lists standard claims and their descriptions as defined in RFCs and other specifications. 2) JWT Confirmation Methods that lists methods for confirming JWTs and their descriptions as defined in RFC 7800. The document provides information on the creation date, formats available, registration procedures, and experts for each registry.

Uploaded by

Rakesh Singh
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 5

JSON Web Token

(JWT)

Created
2015-01-23

Last Updated
2019-05-16

Available Formats
[IMG]
XML [IMG]
HTML [IMG]
Plain text

Registries included below

* JSON Web Token Claims


* JWT Confirmation Methods

JSON Web Token Claims

Registration Procedure(s)

Specification Required

Expert(s)

John Bradley, Brian Campbell, Michael B. Jones, Chuck Mortimore

Reference
[RFC7519]

Note

See [RFC7519] for mailing list instructions.

Available Formats
[IMG]
CSV

Claim Name Claim Description


Change Controller Reference
iss Issuer [IESG]
[ RFC7519, Section 4.1.1]
sub Subject [IESG]
[ RFC7519, Section 4.1.2]
aud Audience [IESG]
[ RFC7519, Section 4.1.3]
exp Expiration Time [IESG]
[ RFC7519, Section 4.1.4]
nbf Not Before [IESG]
[ RFC7519, Section 4.1.5]
iat Issued At [IESG]
[ RFC7519, Section 4.1.6]
jti JWT ID [IESG]
[ RFC7519, Section 4.1.7]
name Full name
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
given_name Given name(s) or first name(s)
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
family_name Surname(s) or last name(s)
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
middle_name Middle name(s)
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
nickname Casual name
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
preferred_username Shorthand name by which the End-User
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
wishes to be referred to
5.1]
profile Profile page URL
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
picture Profile picture URL
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
website Web page or blog URL
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
email Preferred e-mail address
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
email_verified True if the e-mail address has been
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
verified; otherwise false
5.1]
gender Gender
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
birthdate Birthday
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
zoneinfo Time zone
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
locale Locale
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
phone_number Preferred telephone number
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
phone_number_verified True if the phone number has been
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
verified; otherwise false
5.1]
address Preferred postal address
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

5.1]
updated_at Time the information was last
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
updated
5.1]
azp Authorized party - the party to
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
which the ID Token was issued
2]
nonce Value used to associate a Client
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
session with an ID Token
2]
auth_time Time when the authentication
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
occurred
2]
at_hash Access Token hash value
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

2]
c_hash Code hash value
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

3.3.2.11]
acr Authentication Context Class
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
Reference
2]
amr Authentication Methods References
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section

2]
sub_jwk Public key used to check the
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Core 1.0,
Section
signature of an ID Token
7.4]
cnf Confirmation [IESG]
[RFC7800, Section 3.1]
sip_from_tag SIP From tag header field parameter [IESG]
[RFC8055][RFC3261]
value
sip_date SIP Date header field value [IESG]
[RFC8055][RFC3261]
sip_callid SIP Call-Id header field value [IESG]
[RFC8055][RFC3261]
sip_cseq_num SIP CSeq numeric header field [IESG]
[RFC8055][RFC3261]
parameter value
sip_via_branch SIP Via branch header field [IESG]
[RFC8055][RFC3261]
parameter value
orig Originating Identity String [IESG]
[RFC8225, Section 5.2.1]
dest Destination Identity String [IESG]
[RFC8225, Section 5.2.1]
mky Media Key Fingerprint String [IESG]
[RFC8225, Section 5.2.2]
events Security Events [IESG]
[RFC8417, Section 2.2]
toe Time of Event [IESG]
[RFC8417, Section 2.2]
txn Transaction Identifier [IESG]
[RFC8417, Section 2.2]
rph Resource Priority Header [IESG]
[RFC8443, Section 3]
Authorization
sid Session ID
[OpenID_Foundation_Artifact_Binding_Working_Group] [ OpenID Connect Front-Channel

Logout 1.0, Section 3]


vot Vector of Trust value [IESG]
[RFC8485]
vtm Vector of Trust trustmark URL [IESG]
[RFC8485]
attest Attestation level as defined in [IESG]
[RFC8588]
SHAKEN framework
origid Originating Identifier as defined in [IESG]
[RFC8588]
SHAKEN framework
JWT Confirmation Methods

Registration Procedure(s)

Specification Required

Expert(s)

John Bradley, Hannes Tschofenig

Reference
[RFC7800]

Available Formats
[IMG]
CSV

Confirmation Method Value Confirmation Method Description Change Controller


Reference
jwk JSON Web Key Representing Public Key [IESG]
[ RFC7800, Section 3.2]
jwe Encrypted JSON Web Key [IESG]
[ RFC7800, Section 3.3]
kid Key Identifier [IESG]
[ RFC7800, Section 3.4]
jku JWK Set URL [IESG]
[ RFC7800, Section 3.5]

People

ID Name
Contact URI Last Updated
[IESG] IESG
mailto:iesg&ietf.org
[OpenID_Foundation_Artifact_Binding_Working_Group] OpenID Foundation Artifact
Binding mailto:openid-specs-ab&lists.openid.net 2015-04-20
Working Group

You might also like