| URL | https://<oidc-baseurl>/.well-known/openid-configuration |
|---|---|
| Request | GET without any parameters |
| Authentication | None |
| Success response | 200 OK with JSON structure according to standard. |
| Error reponse | Applicable http error code |
| Example | See below |
Openid-configuration is a standard endpoint that returns configuration metadata in terms of key properties of the OIDC Provider.
Example
The following example shows a request / response pair for the openid-configuration endpoint.
Request / Response
GET /auth/realms/preprod/.well-known/openid-configuration HTTP/1.1
Host: oidc-preprod.bankidapis.no
Connection: close
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Cache-Control: no-cache
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.8
HTTP/1.1 200 OK
Date: Thu, 16 Nov 2017 12:07:47 GMT
Server: WildFly/10
Cache-Control: no-cache
X-Powered-By: Undertow/1
Content-Type: application/json
Content-Length: 1947
Via: 1.1 oidc-preprod.bankidapis.no
Connection: close
{
"issuer": "https://oidc-preprod.bankidapis.no/auth/realms/preprod",
"authorization_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/auth",
"token_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/token",
"token_introspection_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/token/introspect",
"userinfo_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/userinfo",
"end_session_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/logout",
"jwks_uri": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/certs",
"check_session_iframe": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/login-status-iframe.html",
"grant_types_supported": [
"authorization_code",
"implicit",
"refresh_token",
"password",
"client_credentials"
],
"response_types_supported": [
"code",
"none",
"id_token",
"token",
"id_token token",
"code id_token",
"code token",
"code id_token token"
],
"subject_types_supported": [
"public",
"pairwise"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"userinfo_signing_alg_values_supported": [
"RS256"
],
"request_object_signing_alg_values_supported": [
"none",
"RS256"
],
"response_modes_supported": [
"query",
"fragment",
"form_post"
],
"registration_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/clients-registrations/openid-connect",
"token_endpoint_auth_methods_supported": [
"private_key_jwt",
"client_secret_basic",
"client_secret_post"
],
"token_endpoint_auth_signing_alg_values_supported": [
"RS256"
],
"claims_supported": [
"sub",
"iss",
"auth_time",
"name",
"given_name",
"family_name",
"preferred_username",
"email"
],
"claim_types_supported": [
"normal"
],
"claims_parameter_supported": false,
"scopes_supported": [
"openid",
"offline_access"
],
"request_parameter_supported": true,
"request_uri_parameter_supported": true
}