OAuth 2.0 Rich Authorization Requests

RFC 9396: OAuth 2.0 Rich Authorization Requests

datatracker.ietf.org/doc/html/rfc9396

The Rich Authorization Requests extension provides a way for OAuth clients to request fine-grained permissions during an authorization request. For example, an app may specify a request such as "let me make a payment of 45 Euros" or "please give me read access to folder X and write access to folder Y".

More resources

Rich OAuth 2.0 Authorization Requests (Torsten Lodderstedt)