> ## Documentation Index
> Fetch the complete documentation index at: https://api.aodocs.com/llms.txt
> Use this file to discover all available pages before exploring further.

# In-depth: OAuth implementation RFCs and BCPs

## Client implementations

<Columns cols={2}>
  <Card title="RFC 6749 (OAuth 2.0 Core)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc6749" />

  <Card title="RFC 6750 (Bearer Tokens)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc6750" />

  <Card title="RFC 6819 (Threat Model and Security Considerations)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc6819" />

  <Card title="RFC 8252 (OAuth for Native Apps)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc8252" />

  <Card title="RFC 8628 (Device Grant)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc8628" />

  <Card title="OAuth for Browser-Based Apps" icon="badge-check" horizontal href="https://oauth.net/2/browser-based-apps/" />

  <Card title="OAuth 2.0 Security Best Current Practice" icon="badge-check" horizontal href="https://oauth.net/2/oauth-best-practice/" />

  <Card title="RFC 7009 (Token Revocation)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc7009" />

  <Card title="RFC 8414 (Authorization Server Metadata)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc8414" />
</Columns>

## Server implementations

<Columns cols={2}>
  <Card title="RFC 7519 (JWT)" icon="badge-check" horizontal href="https://tools.ietf.org/html/rfc7519" />

  <Card title="JWT Best Current Practice" icon="badge-check" horizontal href="https://tools.ietf.org/html/draft-ietf-oauth-jwt-bcp-07" />

  <Card title="A Look at the Draft for JWT BCP" icon="badge-check" horizontal href="https://auth0.com/blog/a-look-at-the-latest-draft-for-jwt-bcp/" />

  <Card title="JWT Profile for Access Tokens" icon="badge-check" horizontal href="https://tools.ietf.org/id/draft-bertocci-oauth-access-token-jwt-00.html" />

  <Card title="Hard Parts of JWT Security" icon="badge-check" horizontal href="https://www.pingidentity.com/fr/company/blog/posts/2019/the-hard-parts-of-jwt-security-nobody-talks-about.html" />
</Columns>
