Skip to content

[Native SSO] DPoP support #2131

Open
Open
[Native SSO] DPoP support#2131
Labels
component: Native SSO for AppsNative SSO for Appsmigrated-from-bitbucketMigrated from Bitbucketpriority: minorMinor prioritytype: proposalProposal
@bitbucket-import-issues

Description

@bitbucket-import-issues
bitbucket-import-issues
bot
opened on May 22, 2026

Originally submitted by Takahiko Kawasaki (Takahiko Kawasaki) on 2025-04-21

OpenID Connect Native SSO for Mobile Apps 1.0 - draft 07, Section 4.4. “Token Exchange Response” requires the token_type to be bearer.

token_type

REQUIRED. The value of this parameter MUST be bearer.

This requirement prevents the specification from being used in conjunction with RFC 9449: OAuth 2.0 Demonstrating Prof of Possesion (DPoP), which uses DPoP as the token_type.

It would be better to adjust the wording of this requirement to allow Native SSO and DPoP to be used together.

Bitbucket status: new

Bitbucket origin: issue 2175

Metadata

Metadata

Assignees

No one assigned

    Labels

    component: Native SSO for AppsNative SSO for Appsmigrated-from-bitbucketMigrated from Bitbucketpriority: minorMinor prioritytype: proposalProposal

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions