RFC 9396: OAuth 2.0 Rich Authorization Requests


The Rich Authorization Requests extension provides a way for OAuth clients to request fine-grained permissions during an authorization request. For example, an app may specify a request such as "let me make a payment of 45 Euros" or "please give me read access to folder X and write access to folder Y".

More resources