Draft: OAuth 2.0 Rich Authorization Requests

tools.ietf.org/html/draft-lodderstedt-oauth-rar

The Rich Authorization Requsts extension provides a way for OAuth clients to request fine-grained permissions during an authorization request. For example, an app may specify a request such as "let me make a payment of 45 Euros" or "please give me read access to folder X and write access to folder Y".

This draft is still in progress, and is open to feedback from people who are interested in using it!

More resources