@misc{rfc8693,
    series =    {Request for Comments},
    number =    8693,
    howpublished =  {RFC 8693},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC8693},
    url =       {https://www.rfc-editor.org/info/rfc8693},
    author =    {Michael B. Jones and Anthony Nadalin and Brian Campbell and John Bradley and Chuck Mortimore},
    title =     {{OAuth 2.0 Token Exchange}},
    pagetotal = 27,
    year =      2020,
    month =     jan,
    abstract =  {This specification defines a protocol for an HTTP- and JSON-based Security Token Service (STS) by defining how to request and obtain security tokens from OAuth 2.0 authorization servers, including security tokens employing impersonation and delegation.},
}