Openid-configuration is a standard endpoint that returns configuration metadata in terms of key properties of the OIDC Provider.

Table of Contents

Overview

200 OK with

URL	https://<oidc-baseurl>/.well-known/openid-configuration
Request method	`GET`without any
Client authentication	None
Request parameters	Authentication	None
Success response	Response elements	JSON structure according to standard.	Error reponse	Applicable http error code
Example	See below

Openid-configuration is a standard endpoint that returns a JSON-formatted response containing configuration metadata in terms of key properties of the OIDC Provider.

Anchor
example
example
Example

...

Code Block

language	xml
theme	Confluence
title	Request / Response

GET /authoidc/realmsoauth/preprod/.well-known/openid-configuration HTTP/1.1
Host: oidc-preprod.bankidapis.no
Connection: close
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/6158.0.31633029.100110 Safari/537.36
Cache-Control: no-cache
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*
Accept-Encoding: gzip, deflate
;q=0.8
Accept-Language: en-US,en;q=0.8
 
HTTP/1.1 200 OK
Date: Thu, 16 Nov 2017 12:07:47 GMTContent-Type: application/json;charset=utf-8
Server: WildFly/10
Cache-Control: no-cacheMicrosoft-IIS/8.5
X-Powered-By: ARR/3.0
X-Powered-By: Undertow/1
Content-Type: application/json
Content-Length: 1947
Via: 1.1 oidc-preprod.bankidapis.no
Connection: close
ASP.NET
Date: Tue, 23 May 2017 20:42:14 GMT
Connection: close
Content-Length: 1369
{
    "issuerauthorization_endpoint": "https://oidc-preprod.bankidapis.no/authoidc/realmsoauth/preprodauthorize",
    "authorizationclaim_types_endpointsupported": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/auth",
 [
  "token_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/token",     "token_introspection_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/token/introspect",normal"
    "userinfo_endpoint": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/userinfo"],
    "endclaims_sessionparameter_endpointsupported": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/logout"false,
    "jwksclaims_urisupported": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/certs",[
    "check_session_iframe": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/protocol/openid-connect/login-status-iframe.html",
    "grantpreferred_types_supported": [username",
        "authorization_codename",
        "implicitsub",
        "refresh_tokeniat",
        "passwordiss",
        "clientauth_credentialstime",
    ],     "response_types_supported": [exp",
         "codebirthdate",
        "nonenonce",
        "id_tokenamr",
        "tokenazp",
        "idbid_token tokencode",
        "code id_tokenaud",
        "code tokenat_hash",
        "code id_token token"
c_hash",
   ],     "subject_types_supported": [nnin",
        "publicaddress",
        "pairwisephone"
    ],
    "id_token_signing_alg_valuesgrant_types_supported": [
        "RS256authorization_code"
    ],
    "userinfoid_token_signing_alg_values_supported": [
        "RS256"
    ],
    "request_object_signing_alg_values_supportedissuer": ["https://preprod.bankidapis.no",
        "none"jwks_uri": "https://preprod.bankidapis.no/oidc/oauth/userinfo/jwk",
    "login_hint_supported": "[BIM|BID][:\\d{11}][:\\d{8}][:\\d{6}] for  "RS256"
    ]respectively client_type, nnin, phoneNo, birthday",
    "response_modes_supported": [
        "query",
        "fragment",
        "form_post"
    ],
    "registrationresponse_types_endpointsupported": "https://oidc-preprod.bankidapis.no/auth/realms/preprod/clients-registrations/openid-connect",[
        "code",
        "token_endpoint_auth_methods_supported": [",
         "privateid_key_jwttoken",
        "client_secret_basicid_token token",
        "client_secret_post"code token",
    ],    "code "token_endpoint_auth_signing_alg_values_supported": [id_token",
        "code id_token "RS256token"
    ],
    "claimsscopes_supported": [
        "standard_bankid",
        "subaddress",
        "issphone",
        "auth_timeoperational-status-read",
        "namennin",
        "given_nameopenid",
        "family_nameprofile",
        "preferred_usernameoperational-status-write",
        "email"
    ],
    "serverVersion": "bankid-oauth-api 1.2.7",
    "claimsubject_types_supported": [
        "normalpublic"
    ],
    "claimstoken_parameter_supportedendpoint": false"https://preprod.bankidapis.no/oidc/oauth/token",
    "scopestoken_endpoint_auth_methods_supported": [
        "openidclient_secret_post",
        "offlineclient_secret_accessbasic"
    ],
    "requestui_parameterlocales_supported": true [
        "no",
        "en"
    ],
    "userinfo_endpoint": "https://preprod.bankidapis.no/oidc/oauth/userinfo",
    "requestuserinfo_signing_urialg_parametervalues_supported": true
}[
        "RS256",
        "none"
    ]
}

Versions Compared

Old Version 1

New Version 2

Key

Overview

Anchor
example
example
Example

Page Comparison

Versions Compared

Old Version 1

New Version 2

Key

Overview

AnchorexampleexampleExample

Anchor
example
example
Example