Skip to content

Add Substrate Invariants section#45

Open
mcguinness wants to merge 1 commit into
maxwellgerber:mainfrom
mcguinness:issue-44-substrate-invariants
Open

Add Substrate Invariants section#45
mcguinness wants to merge 1 commit into
maxwellgerber:mainfrom
mcguinness:issue-44-substrate-invariants

Conversation

@mcguinness

Copy link
Copy Markdown

Resolves #44.

Adds a new # Substrate Invariants section positioned after # Overview and before # Client Opt-In Signaling. The section has two subsections:

  • Substrate Guarantees — six invariants the authorization server provides (no authorization expansion; continuation through the token endpoint; sender-constraining continuity; originating request immutability through the polling grant type; opaque continuation reference; polling is always available as an authoritative completion path).
  • Profile Obligations — three obligations any extending profile MUST satisfy (state distinguishability, narrowing-only parameter updates, no relaxation of guarantees).

Per the issue, the section restates obligations already implied by §4, §5, and §9 rather than introducing new normative wire content. No existing text is modified. No new IANA actions or parameters.

Files changed

  • draft-gerber-oauth-deferred-token-response.md: +71 lines, new section after Overview.

Source

Section adapted from §Substrate Invariants in draft-mcguinness-oauth-deferred-code-processing.

Layer the substrate-invariants framing on top of DTR. States the
guarantees the substrate provides to clients and to higher-layer
profiles (no authorization expansion, continuation through token
endpoint, sender-constraining continuity, originating-request
immutability, opaque continuation reference, polling always available)
and the obligations profiles MUST preserve when extending the
substrate (state distinguishability, narrowing-only parameter updates,
no relaxation of guarantees).

Source: deltas from draft-mcguinness-oauth-deferred-code-processing.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Make the substrate contract for higher-layer profiles explicit

1 participant