Configuring the OIDC parameters for a native OAuth provider
Open ID Connect (OIDC) provides an additional authentication protocol based on OAuth 2.0. OIDC provides user information encoded in a JSON Web Token, or JWT.
About this task
When you enable OpenID connect, a template is provided for generating ID tokens along with access tokens and the required assembly policies are automatically created. You can customize the policies to suit your needs in the API Editor. The sample key provided is for test purposes only and is used to sign the JWT token.
One of the following roles is required to configure an OIDC template for a native OAuth Provider:
- Organization Administrator
- Custom role with the permissions
You can select the OIDC settings page for a native OAuth provider immediately on completion of the creation operation detailed in Configuring a native OAuth provider, or you can update the OIDC settings for an existing native OAuth provider. If you want to update the OIDC settings for an existing native OAuth provider, complete the following steps before following the procedure described in this topic:
- Click .
- Select the required native OAuth provider.
- Click OpenID Connect in the sidebar menu.
Select the initial check box to configure an OIDC Template. Enter the following
Field Description Support hybrid response types (optional) Select the response types for the OpenID Connect hybrid flow to be supported by this OAuth provider. Auto Generate OIDC API Assembly Select this option to generate the full OIDC assembly. Leave this option unselected to simply enable OIDC support in the OAuth provider and allow the developer to implement their own assembly. ID token issuer Descriptive text to indicate the source of the key. ID token signing key Specify the JSON Web Key (JWK) to be used to sign the ID token. ID token signing algorithm Select the algorithm used to sign the token.
- Click Save when done. You can edit the policies by using the API Editor.