The OIDC Provider from BankID currently supports authentication via the following set of IDPs. More IDP options may be added in the future.
Each IDP option is associated with a Name and Level of Assurance (LoA) codified via attributes called amr (Authentication Method Reference) and acr (Authentication Context Class Reference). These attributes can be included in the request from an ODIC Client to the Authorize endpoint at the OIDC Provider to request either a particular IDP (amr) or any IDP at a particular LoA (acr). Sucessful authentication results in an ID Token being returned to the reqesting OIDC Client. The ODIC platform from BankID provides ID Tokens with uniform characteristics regarless of the IDP being used in any particular case. Note that ID Tokens also contain values for the amr and acr attributes, corresponding to the IDP actually being used. Values for these attributes in an ID Token man be different from corresponding values provided in the request from the OIDC Client to the Authorize endpoint. One particular example is when xID performs a step-up to BankID.