enable-pkce

Edit online

Use this entry to enable Proof Key for Code Exchange (RFC 7636) during the Authorization Code Flow. Enable this option if the configured OIDC OP requires PKCE.

Syntax

enable-pkce = {true | false}

Description

This boolean is used to indicate whether the reverse proxy uses Proof Key for Code Exchange (RFC 7636) during the Authorization Code Flow.

Options

true: The reverse proxy uses PKCE during the Authorization Code Flow.
false: The reverse proxy does not use PKCE during the Authorization Code Flow.

Usage

This stanza entry is optional.

Default value

false

Example

enable-pkce = true