...
Jira Legacy server System Jira serverId f52c7d31-6eab-3f0e-93c3-231b5754d506 key JOIDC-201 Basic DPoP access token use case more or less covered now with token and userinfo
If public key thumbprint is stored inside our token claims sets, DPoP access tokens are issued
thumbprint may be fetched in PAR or authorize -flows, or via DPoP proof
Profile configuration option to control requirements & claims validators
TODO:
nonce-management
refresh token binding (public clients)
introspection and revocation support
Jira Legacy server System Jira serverId f52c7d31-6eab-3f0e-93c3-231b5754d506 key JCOMOIDC-115 Upgrade is needed for the DPoP metadata-flag support: https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/issues/467/support-for-dpop_bound_access_tokens-in
Before upgrade, we need a solution for a problem described in: https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/issues/438/non-uri-resource-indicators
...