2.2.3.6 csr_type

 POST /token HTTP/1.1
 Host: server.example.com
 Content-Type: application/x-www-form-urlencoded
 grant_type={grant_type}&client_id={client_id}&redirect_uri={redirect_uri}&requested_token_use={requested_token_use}&assertion={assertion}&csr={csr}&csr_type={csr_type}

OPTIONAL

The csr_type parameter is optional, and can be specified by the client role of the OAuth 2.0 Protocol Extensions in the POST body when making a request to the token endpoint (section 3.1.5.2). The client includes this parameter when providing a csr parameter to indicate the format of the csr parameter. The only supported value for the csr_type parameter is "http://schemas.microsoft.com/windows/pki/2009/01/enrollment#PKCS10".

The AD FS server ignores this parameter unless its ad_fs_behavior_level is AD_FS_BEHAVIOR_LEVEL_2 or higher.

For an example of the csr_type parameter being used, see section 4.13.

The format for the csr_type parameter is as follows.

 String = *(%x20-7E)
 csr_type = String