[oidc:default] stanzaEdit online discovery-endpointUse this entry to set the discovery endpoint for the OP.redirect-uri-hostUse this entry to set the redirect URI that has been registered with the OIDC OP.proxyUse this entry to set the proxy that is used to reach the OIDC endpoints.client-identityUse this entry to set the Verify Identity Access client identity as registered with the OP.client-secretUse this entry to set the Verify Identity Access client secret as registered with the OP.response-typeThe required response type for authentication responses.enable-pkceUse this entry to enable Proof Key for Code Exchange (RFC 7636) during the Authorization Code Flow. Enable this option if the configured OIDC OP requires PKCE.response-modeUse this entry to set the required response mode for authentication responses.scopesUse this entry to set the scopes to be sent in the authentication request in addition to the openid scope.bearer-token-attributesUse this entry to set a JSON data element from the bearer token response, which should be included in the credential as an extended attribute.id-token-attributesUse this entry to set a claim from the Id token response which should be included in the credential as an extended attribute.allowed-query-argAdditional query string arguments can be provided to the authentication kick-off URL which will in turn be appended to the corresponding authentication request.mapped-identityUse this entry to set a formatted string that is used to construct the Verify Identity Access principal name from elements of the ID token. external-userUse this entry to set whether the mapped identity should correspond to a known Verify Identity Access identity. Parent topic: Stanza reference