OIDC Clients must authenticate with the OIDC Provider for several of the supported Endpoints. The OIDC Provider from BankID currently supports two different schemes, both using the HTTP Authorization Header:
- Basic according to OIDC
client_secret_basic,
OAuth2 Client Password and HTTP Basic Authentication. - Bearer according to OAuth2 Bearer token usage
See documentation on Endpoints for supported schemes for each of the Endpoints. The required scheme for any OIDC Client is determined when the OIDC Client is configured at the OIDC Provider.
Note
Support for other authentication schemes (eg. signature-based schemes) may be added as future options.