OIDC Clients must authenticate with the OIDC Provider for several of the supported the Authorize, Token and Introspect Endpoints. The OIDC Provider from BankID currently supports two different schemes, both using the HTTP Authorization Headerfollowing authentication scheme is currently supported:
- Basic according to OIDC
client_secret_basic,
OAuth2 Client Password and HTTP Basic Authentication. - Bearer according to OAuth2 Bearer token usage
See documentation on Endpoints for supported schemes for each of the Endpoints. The The required scheme for any OIDC Client is determined when the OIDC Client is configured at the OIDC Provider.
Warning | ||
---|---|---|
| ||
Support for other authentication schemes (eg. signature-based schemes) like |
- Bearer according to OAuth2 Bearer token usage