/oauth/pushed-authorizationOAuth 2.0 Pushed Authorization Request endpoint (PAR). Client pushes authorization parameters to authorization server in advance, obtains request_uri to use in authorization request. Returns flat JSON (no code/message envelope). Reference: RFC 9126 (Pushed Authorization Requests).
Schema: dto.PushedAuthorizationRequest
| Status | Description | Schema |
|---|---|---|
| 201 | PAR response (includes request_uri and expires_in) | dto.PushedAuthorizationResponse |
| 400 | invalid_request: request parameters missing or invalid. Reference: RFC 9126. | dto.OAuthErrorResponse |
| 401 | invalid_client: client authentication failed. Reference: RFC 9126. | dto.OAuthErrorResponse |
| 500 | server_error: failed to store authorization request. Reference: RFC 9126. | dto.OAuthErrorResponse |
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
actions |
array of string |
No | ['["list_accounts"', '"read_balances"]'] |
Operation | |
constraints |
object |
No | Extension constraints | ||
data_types |
array of string |
No | ['["account_details"', '"balances"]'] |
Data type | |
identifier |
string |
No | account-12345 |
Identifier | |
locations |
array of string |
No | ['["https://example.com/accounts"]'] |
Location | |
type |
string |
No | account_information |
Grant type |
OAuth standard error response
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
error |
string |
No | invalid_request |
Error code | |
error_description |
string |
No | Missing required parameter |
Error description | |
error_uri |
string |
No | https://docs.example.com/errors |
Error URI | |
state |
string |
No | state-123 |
Status |
PAR response
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
expires_in |
integer |
No | 90 |
Expires in seconds | |
request_uri |
string |
No | urn:example:request_uri:xxx |
Request URI |