OIDC Clients must authenticate with the OIDC Provider for several of the supported Endpoints. The OIDC Provider from BankID currently supports two different schemes, both using the HTTP Authorization Header:
- Basic according to OIDC
client_secret_basic,
OAuth2 Client Password and HTTP Basic Authentication. - Bearer according to OAuth2 Bearer token usage
Support for other authentication schemes (eg. signature-based schemes) may be added as future options. The required scheme for any OIDC Client is determined when the OIDC Client is configured at the OIDC Provider.