The OIDC /OAuth2 standard defines the following different flows (grant types)
The OIDC Provider from BankID only supports supports the Authorization code flow and Client credential flow.
...
- Red corresponds to application-specific flows for the OIDC Client
- Blue corresponds to standardized flows over the REST API according to OIDC/OAuth2 OAuth 2.0 standards.
- Black corresponds to specific flows for the OIDC Provider from BankID allowing that in earlier allowed OIDC Clients to customize GUI experience (see note below).
- Yellow corresponds to specific flows for the designated IDP.
- Green corresponds to specific flows for the designated VAS service (eg. the VAS Service).
An OIDC Client does by-default only involves standardized flows (blue color) over the REST API with the OIDC Provider. The exception is if the OIDC Client wants to customize GUI handling. Any custom GUI component must integrate with another REST API (black color) specific for the OIDC Provider from BankID. A custom GUI component must take care of proper integration with each of the supported IDP options (yellow color) and also any involved VAS service (green color)
| Note | ||
|---|---|---|
| ||
Extensive customization of the GUI was previously supported, but has been removed to ensure a more consistent user-experience when using BankID OIDC. The BankID OIDC client does allows some customization by displaying the name and logo (150px x 30 px, png or gif) of the merchant in the client. |
Note that the below figure does not reflect the use of any JavaScript Connector to assist the OIDC Client with integration with the OIDC Provider. Using a JS Connector will save the OIDC Client from handling most of the front-end logic (blue color) associated with the message flow, thus simplyfing integration work.
...