OIDC Clients must authenticate with the OIDC Provider for the Authorize, Token and Introspect Endpoints. The following authentication scheme is currently supported:Among the standardized authentication methods the following are currently supported by the OIDC Provider from BankID:
- Basic according to OIDC
client_secret_basic,
OAuth2 Client Password and HTTP Basic Authentication.
The required scheme for any OIDC Client is determined when the OIDC Client is configured at the OIDC Provider.
Warning | ||
---|---|---|
| ||
Support for other OIDC authentication schemes like client_secret_post, |
OIDC Clients requesting access to Protected Resources VAS-services that uses the OIDC Provider for authorization must in addition authenticate with Resource VAS-Servers using Access Tokens from the OIDC Provider. The type of Access Token and also the scheme for passing such tokens to Resources Servers VAS-servers are specific for each of the supported kinds of Protected Resources Value Added Services (VAS).