The OIDC Provider is currently available in three different pilot configurations corresponding to the columns in the following table.

Each of the pilot configurations support various feature combinations as shown. All features will be consolidated into one single configuration after the pilot phase. 

Each of the configurations are in turn available in different environments (preview, pre-prod), each with its own set of base URLs for the REST API and default GUI component, respectively.

Configuration metadata for each configuration/enviroment is available at the URLs shown in the table.

 

 BankID pilotxID pilotPSD2 pilot
IDP options   
BankID(tick)(tick)(tick)
xID(error)(tick)(tick)
Supplementary Services   
Additional Information(tick)(tick)(tick)
PSD2(error)(error)(tick)
Base URLs   
Preview

API: preview.bankidapis.no/oidc

GUI: oidc.bankidnorge.no

API: preview.bankidapis.no/oidc-xid-poc

GUI: xid-poc.bankidnorge.no

TBD
Pre-prod

API: preprod.bankidapis.no/oidc

GUI: oidc-preprod.bankidnorge.no

API: preprod.bankidapis.no/oidc-xid-poc

GUI: xid-poc-preprod.bankidnorge.no

TBD
Configuration metadata   
Previewpreview.bankidapis.no/oidc/oauth/.well-known/openid-configurationpreview.bankidapis.no/oidc-xid-poc/oauth/.well-known/openid-configurationTBD
Pre-prodpreprod.bankidapis.no/oidc/oauth/.well-known/openid-configuration preprod.bankidapis.no/oidc-xid-poc/oauth/.well-known/openid-configurationTBD

Please contact developer@bankidnorge.no to request access to any of the pilot configurations in any of the environments.

The following information must be supplied by the owner of the OIDC Client that requests access.

  • Description on what the OIDC Client is going to be used for
  • Contact information for both technical and commercial requests.
  • Optionally a BankID Merchant certificate to be used for the Client, thus replacing the default certificate of the OIDC Service itself.
  • Requested user properties or resources (scopes). 
  • One of more URLs where control will redirected back to the OIDC client (redirect URLs must be pre-registered for safety reasons).
  • A display name for the OIDC Client that will be shown in the header of the (default) OIDC dialogues.
  • Optionally an URL for custom GUI handling overriding the default GUI component of the OIDC Provider.

Sucessfull enrollment will result in the return of a client_id and a client_secret to the application owner.