Errata Corrections to JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) Approved
Published August 20, 2025
Errata to the following specification have been approved by a vote of the OpenID Foundation members:
- JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) – This specification was created to bring some of the security features defined as part of OpenID Connect to OAuth 2.0
An Errata version of a specification incorporates corrections identified after the Final Specification was published. This specification is a product of the OpenID FAPI Working Group.
The voting results were:
- Approve – 79 votes
- Object - 0 votes
- Abstain – 17 votes
Total votes: 96 (out of 420 members = 22.9% > 20% quorum requirement)
The specification incorporating the errata is available at the standard locations as well as:
https://openid.net/specs/oauth-v2-jarm-errata1.html
See the Introduction section of the specification for the link to the previously approved version.
Marie Jordan – OpenID Foundation Secretary
About the OpenID Foundation
The OpenID Foundation (OIDF) is a global open standards body committed to helping people assert their identity wherever they choose. Founded in 2007, we are a community of technical experts leading the creation of open identity standards that are secure, interoperable, and privacy preserving. The Foundation’s OpenID Connect standard is now used by billions of people across millions of applications. In the last five years, the Financial Grade API has become the standard of choice for Open Banking and Open Data implementations, allowing people to access and share data across entities. Today, the OpenID Foundation’s standards are the connective tissue to enable people to assert their identity and access their data at scale, the scale of the internet, enabling “networks of networks” to interoperate globally. Individuals, companies, governments and non-profits are encouraged to join or participate. Find out more at openid.net.
