DPoP-Nonce

The HTTP DPoP-Nonce response header provides a server-generated nonce value for clients to include in subsequent DPoP proof JWTs to prevent replay attacks.

Table of Contents

Usage

When an authorization or resource server requires stronger replay protection for DPoP-bound tokens, the server sends a DPoP-Nonce header in its response. The client extracts this nonce value and includes the value in the nonce claim of the next DPoP proof JWT sent to the same server.

Nonce validation is an optional extension to the core DPoP protocol. Servers use nonces when the unique identifier (jti claim) and timestamp (iat claim) in the DPoP proof JWT provide insufficient protection against replay attacks. By requiring a fresh nonce from the server before accepting a proof, the server ensures the proof was generated recently and specifically for the current interaction.

Servers send the DPoP-Nonce header in responses to both successful and failed requests. When a client sends a DPoP proof without a required nonce or with an expired nonce, the server rejects the request and provides a fresh nonce in the response. The client retries the request with a new DPoP proof containing the fresh nonce.

Nonce values are opaque to the client. The server generates and validates nonces using any technique appropriate to its security requirements. Common approaches include time-based tokens, cryptographic MACs, or database-backed unique identifiers.

Values

The header value is an ASCII string generated by the server. The specification does not define a format. Servers design nonce values to support their validation logic while remaining opaque to clients.

Example

An authorization server responding to a token request. The client included a valid DPoP proof, and the server issues the access token while also providing a nonce for use in subsequent requests to resource servers.

DPoP-Nonce: eyJ7S_zG.eyJH0-Z.HX4w-7v

A resource server rejecting a request because the DPoP proof lacked a required nonce. The DPoP-Nonce header in the 401 Unauthorized response provides the nonce needed for the retry. The client generates a new DPoP proof containing this nonce value in the nonce claim.

HTTP/1.1 401 Unauthorized
DPoP-Nonce: eyJ7S_zG.eyJH0-Z.HX4w-7v
WWW-Authenticate: DPoP error="use_dpop_nonce", error_description="Resource server requires nonce in DPoP proof"

Takeaway

The DPoP-Nonce header provides a server-generated nonce value for clients to include in DPoP proof JWTs, enabling servers to enforce stronger replay protection for OAuth token usage.

See also

Last updated: March 6, 2026