Quasr
  • Introduction
    • Welcome to Quasr
    • Concepts
      • Flexible Authentication
      • User-Centric Privacy
      • Modern Development
    • Terminology
    • FAQs
  • Getting Started
    • Sign up with Quasr
    • Setup your tenant
      • Factor Configuration
      • Enrolling additional factors
      • Test with the Sample Client
      • Understanding Scopes & Scores
      • Setting up an API Client (M2M)
    • Connect your app
      • Hosted Login UI
      • Custom Login UI
      • Embedded Login UI
  • Account Administration
    • Introduction
    • Account & Billing
      • Metrics
    • Tenants
    • Usage & Statistics
    • Security
  • Tenant Administration
    • Introduction
    • Dashboard
    • Tenant Settings
    • Your Security
    • Accounts
      • Tenant Admins
    • Factors
      • Factors and Scoring
      • Username (ID)
      • Federation (OAuth2 / OIDC)
        • Apple
        • Facebook
        • GitHub
        • Google
        • LinkedIn
        • Slack
      • Time-based One-time Password (TOTP)
      • One-Time Password (OTP)
      • Password
      • Secret
    • Controls
      • Configuration
      • Permissions
      • Consents
      • Rules
    • Attributes
      • Capturing Claims
      • Sourcing Claims
      • Viewing Claims
      • Searching Claims / Users
      • Sharing Claims
    • Extensions
      • Synchronous
      • Asynchronous
    • Tokens
      • Session Token (OAuth 2.0)
      • Access Token (OAuth 2.0)
      • Refresh Token (OAuth 2.0)
      • ID Token (OIDC 1.0)
      • Consent Token
      • Authorization Code (OAuth 2.0)
    • Hosted Login Page
    • APIs
      • Authentication API
      • Management API (GraphQL)
  • Legal
    • Terms of Service
    • Acceptable Use Policy
    • DPA & Subprocessors
  • More Info
    • Standards
    • Security
      • Vulnerability Disclosure
      • Wall of Recognition
    • Support
    • Status
Powered by GitBook
On this page
  1. More Info

Standards

PreviousDPA & SubprocessorsNextSecurity

Last updated 3 months ago

Quasr provides full support for following standards:

  • Web Identity (WebID) 1.0 ()

  • OpenID Connect 1.0 ()

  • OpenID Connect Discovery 1.0 ()

  • OAuth 2.1 ()

  • OAuth 2.0 ()

  • OAuth 2.0 Proof Key for Code Exchange (PKCE) ()

  • JWT Profile for OAuth 2.0 Access Tokens ()

  • JWT Profile for OAuth 2.0 Authorization Grant ()

  • JWT Profile for OAuth 2.0 Client Authentication ()

  • JSON Web Encryption (JWE) ()

  • JSON Web Signature (JWS) ()

  • JSON Web Token (JWT) ()

  • JSON Web Key (JWK) ()

Quasr provides partial support for following standards:

  • Solid OpenID Connect (Solid-OIDC) ()

    • currently no support for dereferencable Solid clients

    • currently no support for DPoP-bould OIDC ID tokens

  • Solid WebID Profile ()

    • currently no support for writing to profiles

    • currently missing pim:preferencesFile

https://w3c.github.io/WebID/spec/identity
https://openid.net/specs/openid-connect-core-1_0.html
https://openid.net/specs/openid-connect-discovery-1_0.html
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-04
https://datatracker.ietf.org/doc/html/rfc6749
https://datatracker.ietf.org/doc/html/rfc7636
https://datatracker.ietf.org/doc/html/rfc9068
https://datatracker.ietf.org/doc/html/rfc7523
https://datatracker.ietf.org/doc/html/rfc7523
https://datatracker.ietf.org/doc/html/rfc7516
https://datatracker.ietf.org/doc/html/rfc7515
https://datatracker.ietf.org/doc/html/rfc7519
https://datatracker.ietf.org/doc/html/rfc7517
https://solid.github.io/solid-oidc
https://solid.github.io/webid-profile