Konubinix' opinionated web of thoughts

RFC 8705 - OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

Fleeting

OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

client authentication and certificate- bound access and refresh tokens using mutual Transport Layer Security (TLS) authentication with X.509 certificates.

https://datatracker.ietf.org/doc/rfc8705/

Mutual-TLS OAuth client authentication and certificate-bound access tokens can be used independently of each other

https://datatracker.ietf.org/doc/rfc8705/

possible in support of binding access tokens to a TLS client certificate for public clients (those without authentication credentials associated with the “client_id”).

https://datatracker.ietf.org/doc/rfc8705/