OIDC Dynamic Clients

OpenID Connect (OIDC) publishes a specification that allows registration of a client to an OpenID Connect Provider.

This enables someone to onboard their application to an OpenID Connect provider through a standard well-formed API. See the specification https://openid.net/specs/openid-connect-registration-1_0.html.

The primary information that an application administrator is required to provide is the redirect URI that the application uses when requesting an identity.

To use dynamic client registration, you must be using an OIDC-enabled definition and have the option Enable Client Registration set to true. See Creating an API protection definition.