An OAuth assertion grant connection exchanges a SAML assertion or a JWT for an OAuth access token with the PingFederate OAuth AS. You can configure an OAuth assertion grant connection with an IdP partner either in conjunction with browser-based SSO, WS-Trust, or independently.
For more information about these standards, see Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants (tools.ietf.org/html/rfc7522) and JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (tools.ietf.org/html/rfc7523).