Grant Negotiation and Authorization Protocol (GNAP)
- Created
- 2024-03-21
- Last Updated
- 2024-03-21
- Available Formats
-
XML
HTML
Plain text
Registries included below
- GNAP Grant Request Parameters
- GNAP Access Token Flags
- GNAP Subject Information Request Fields
- GNAP Assertion Formats
- GNAP Client Instance Fields
- GNAP Client Instance Display Fields
- GNAP Interaction Start Modes
- GNAP Interaction Finish Methods
- GNAP Interaction Hints
- GNAP Grant Response Parameters
- GNAP Interaction Mode Responses
- GNAP Subject Information Response Fields
- GNAP Error Codes
- GNAP Key Proofing Methods
- GNAP Key Formats
- GNAP Authorization Server Discovery Fields
GNAP Grant Request Parameters
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| access_token | object | [RFC-ietf-gnap-core-protocol-20, Section 2.1.1] |
| access_token | array of objects | [RFC-ietf-gnap-core-protocol-20, Section 2.1.2] |
| subject | object | [RFC-ietf-gnap-core-protocol-20, Section 2.2] |
| client | object | [RFC-ietf-gnap-core-protocol-20, Section 2.3] |
| client | string | [RFC-ietf-gnap-core-protocol-20, Section 2.3.1] |
| user | object | [RFC-ietf-gnap-core-protocol-20, Section 2.4] |
| user | string | [RFC-ietf-gnap-core-protocol-20, Section 2.4.1] |
| interact | object | [RFC-ietf-gnap-core-protocol-20, Section 2.5] |
| interact_ref | string | [RFC-ietf-gnap-core-protocol-20, Section 5.1] |
GNAP Access Token Flags
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Allowed Use | Reference |
|---|---|---|
| bearer | Request, Response | [RFC-ietf-gnap-core-protocol-20, Sections 2.1.1 and 3.2.1] |
| durable | Response | [RFC-ietf-gnap-core-protocol-20, Section 3.2.1] |
GNAP Subject Information Request Fields
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| sub_id_formats | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 2.2] |
| assertion_formats | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 2.2] |
| sub_ids | array of objects | [RFC-ietf-gnap-core-protocol-20, Section 2.2] |
GNAP Assertion Formats
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Reference |
|---|---|
| id_token | [RFC-ietf-gnap-core-protocol-20, Section 3.4.1] |
| saml2 | [RFC-ietf-gnap-core-protocol-20, Section 3.4.1] |
GNAP Client Instance Fields
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| key | object | [RFC-ietf-gnap-core-protocol-20, Section 7.1] |
| key | string | [RFC-ietf-gnap-core-protocol-20, Section 7.1.1] |
| class_id | string | [RFC-ietf-gnap-core-protocol-20, Section 2.3] |
| display | object | [RFC-ietf-gnap-core-protocol-20, Section 2.3.2] |
GNAP Client Instance Display Fields
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| name | string | [RFC-ietf-gnap-core-protocol-20, Section 2.3.2] |
| uri | string | [RFC-ietf-gnap-core-protocol-20, Section 2.3.2] |
| logo_uri | string | [RFC-ietf-gnap-core-protocol-20, Section 2.3.2] |
GNAP Interaction Start Modes
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Mode | Type | Reference |
|---|---|---|
| redirect | string | [RFC-ietf-gnap-core-protocol-20, Section 2.5.1.1] |
| app | string | [RFC-ietf-gnap-core-protocol-20, Section 2.5.1.2] |
| user_code | string | [RFC-ietf-gnap-core-protocol-20, Section 2.5.1.3] |
| user_code_uri | string | [RFC-ietf-gnap-core-protocol-20, Section 2.5.1.4] |
GNAP Interaction Finish Methods
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Mode | Reference |
|---|---|
| redirect | [RFC-ietf-gnap-core-protocol-20, Section 2.5.2.1] |
| push | [RFC-ietf-gnap-core-protocol-20, Section 2.5.2.2] |
GNAP Interaction Hints
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Mode | Reference |
|---|---|
| ui_locales | [RFC-ietf-gnap-core-protocol-20, Section 2.5.3] |
GNAP Grant Response Parameters
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| continue | object | [RFC-ietf-gnap-core-protocol-20, Section 3.1] |
| acces_token | object | [RFC-ietf-gnap-core-protocol-20, Section 3.2.1] |
| acces_token | array of objects | [RFC-ietf-gnap-core-protocol-20, Section 3.2.2] |
| interact | object | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| subject | object | [RFC-ietf-gnap-core-protocol-20, Section 3.4] |
| instance_id | string | [RFC-ietf-gnap-core-protocol-20, Section 3.5] |
| error | object | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
GNAP Interaction Mode Responses
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Reference |
|---|---|
| redirect | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| app | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| user_code | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| user_code_uri | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| finish | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
| expires_in | [RFC-ietf-gnap-core-protocol-20, Section 3.3] |
GNAP Subject Information Response Fields
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| sub_ids | array of objects | [RFC-ietf-gnap-core-protocol-20, Section 3.4] |
| assertions | array of objects | [RFC-ietf-gnap-core-protocol-20, Section 3.4] |
| updated_at | string | [RFC-ietf-gnap-core-protocol-20, Section 3.4] |
GNAP Error Codes
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Error | Reference |
|---|---|
| invalid_request | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| invalid_client | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| invalid_interaction | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| invalid_flag | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| invalid_rotation | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| key_rotation_not_supported | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| invalid_continuation | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| user_denied | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| request_denied | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| unknown_interaction | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| too_fast | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
| too_many_attempts | [RFC-ietf-gnap-core-protocol-20, Section 3.6] |
GNAP Key Proofing Methods
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Method | Type | Reference |
|---|---|---|
| httpsig | string | [RFC-ietf-gnap-core-protocol-20, Section 7.3.1] |
| httpsig | object | [RFC-ietf-gnap-core-protocol-20, Section 7.3.1] |
| mtls | string | [RFC-ietf-gnap-core-protocol-20, Section 7.3.2] |
| jwsd | string | [RFC-ietf-gnap-core-protocol-20, Section 7.3.3] |
| jws | string | [RFC-ietf-gnap-core-protocol-20, Section 7.3.4] |
GNAP Key Formats
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Format | Reference |
|---|---|
| jwk | [RFC-ietf-gnap-core-protocol-20, Section 7.1] |
| cert | [RFC-ietf-gnap-core-protocol-20, Section 7.1] |
| cert#S256 | [RFC-ietf-gnap-core-protocol-20, Section 7.1] |
GNAP Authorization Server Discovery Fields
- Registration Procedure(s)
-
Specification Required
- Expert(s)
-
Unassigned
- Reference
- [RFC-ietf-gnap-core-protocol-20]
- Available Formats
-
CSV
| Name | Type | Reference |
|---|---|---|
| grant_request_endpoint | string | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| interaction_start_modes_supported | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| interaction_finish_methods_supported | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| key_proofs_supported | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| sub_id_formats_supported | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| assertion_formats_supported | array of strings | [RFC-ietf-gnap-core-protocol-20, Section 9] |
| key_rotation_supported | boolean | [RFC-ietf-gnap-core-protocol-20, Section 9] |