1 Introduction

The Active Directory Federation Services OAuth Authcode Lookup Protocol is defined as a RESTful protocol API.

In addition to the terms specified in section 1.1, the following terms are used in this document:

From [RFC6749]:

  • access token

  • access token request

  • access token response

  • authorization code

  • authorization code grant

  • authorization request

  • authorization response

  • authorization server

  • client identifier

  • redirection URI

  • refresh token

From [MS-ADFSWAP]:

  • relying party

Sections 1.5, 1.8, 1.9, 2, and 3 of this specification are normative. All other sections and examples in this specification are informative.