This session introduces OAuth 2.0 Pushed Authorization Requests (PAR).
PAR is an OAuth extensions allowing clients to send the authorization request payload to the AS in a backend request instead of going through the front channel.
This has many advantages in comparison to traditional authorization requests:
- there is only a reference to the request object sent through the browser, making the mechanisms robust and secure while allowing the client to pass virtually unlimited payloads
- the client is authenticated and authorized before the user interaction starts, which improves security and usability