OAuth 2.0 - Token Exchange

In this video I am showing how the OAuth 2.0 extension RFC 8693, Token Exchange, works and how it may be used.
The RFC is an extension as it allows a client to exchange one type of token for another.
Typical use cases would be to exchange an external facing token for an internal facing token or a token issued for one domain being exchanged for a token of a different domain.
In this video I am referencing an API gateway as the party that exchanges token but that could certainly be the client itself.
If you would like to support my channel please like and subscribe or visit https://www.buymeacoffee.com/saschaze....
As usual, please add comments, ask questions, suggest other topics you would like to hear about.
Thank you for watching!