OAuth Well-Known Configuration Information

The Akana OpenID Connect Provider publishes its metadata in the form of a standard Well-Known Configuration metadata file, per the OpenID Connect specification (http://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfigurationRequest).

Below is some information about the different metadata values.

issuer
The Issuer Identifier of the OpenID Connect Provider. This value is the same as the iss claim value in the ID tokens issued by this provider.
authorization_endpoint
The URL of the OpenID Connect Provider's OAuth 2.0 Authorization Endpoint.
token_endpoint
The URL of the OpenID Connect Provider's OAuth 2.0 Token Endpoint.
userinfo_endpoint
The URL of the OpenID Connect Provider's UserInfo Endpoint.
jwks_uri
The URL of the OpenID Connect Provider's JSON Web Key Set document. This document contains signing keys that clients use to validate the signatures from the provider.
scopes_supported
A JSON array containing a list of OAuth 2.0 scope values configured in this provider.
response_types_supported
A JSON array containing a list of OAuth 2.0 response types supported by this provider.
response_modes_supported
A JSON array containing a list of OAuth 2.0 response modes supported by this provider.
grant_types_supported
A JSON array containing a list of OAuth 2.0 grant types supported by this provider.
subject_types_supported
A JSON array containing a list of Subject Identifier types supported by this provider.
id_token_signing_alg_values_supported
A JSON array containing a list of the JWS signing algorithms (alg values) supported by this provider for the ID Token to encode the Claims in a JWT.
id_token_encryption_alg_values_supported
A JSON array containing a list of the JWE encryption algorithms (alg values) supported by this provider for the ID Token to encode the Claims in a JWT.
id_token_encryption_enc_values_supported
A JSON array containing a list of the JWE encryption algorithms (enc values) supported by this provider for the ID Token to encode the Claims in a JWT.
token_endpoint_auth_methods_supported
A JSON array containing a list of Client Authentication methods supported by this Token Endpoint.
token_endpoint_auth_signing_alg_values_supported
A JSON array containing a list of the JWS signing algorithms (alg values) supported by this Token Endpoint for the signature on the JWT used to authenticate the Client at the Token Endpoint for the private_key_jwt and client_secret_jwt authentication methods.
claims_parameter_supported
Boolean value specifying whether this provider supports use of the claims parameter. A value of true indicates support. If omitted, the default value is false.
request_parameter_supported
Boolean value specifying whether this provider supports use of the request parameter. A value of true indicates support. If omitted, the default value is false.
request_uri_parameter_supported
Boolean value specifying whether this provider supports use of the request_uri parameter. A value of true indicates support. If omitted, the default value is true.

Back to top

Related Topics