You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Jun 2, 2024. It is now read-only.
| name | Arbitrary string to identify connection and identify it from other openid_connect providers | no | String: openid_connect |:my_idp|
52
+
| issuer | Root url for the authorization server | yes ||https://myprovider.com|
53
+
| discovery | Should OpenID discovery be used. This is recommended if the IDP provides a discovery endpoint. See client config for how to manually enter discovered values. | no | false | one of: true, false |
54
+
| client_auth_method | Which authentication method to use to authenticate your app with the authorization server | no | Sym: basic | "basic", "jwks" |
55
+
| scope | Which OpenID scopes to include (:openid is always required) | no | Array<sym> [:openid]|[:openid, :profile, :email]|
56
+
| response_type | Which OAuth2 response type to use with the authorization request | no | String: code | one of: 'code', 'id_token' |
57
+
| state | A value to be used for the OAuth2 state parameter on the authorization request. Can be a proc that generates a string. | no | Random 16 character string | Proc.new { SecureRandom.hex(32) } |
58
+
| response_mode | The response mode per [spec](https://openid.net/specs/oauth-v2-form-post-response-mode-1_0.html)| no | nil | one of: :query, :fragment, :form_post, :web_message|
59
+
| display | An optional parameter to the authorization request to determine how the authorization and consent page | no | nil | one of: :page, :popup, :touch, :wap|
60
+
| prompt | An optional parameter to the authrization request to determine what pages the user will be shown | no | nil | one of: :none, :login, :consent, :select_account|
61
+
| send_scope_to_token_endpoint | Should the scope parameter be sent to the authorization token endpoint? | no | true | one of: true, false |
62
+
| post_logout_redirect_uri | The logout redirect uri to use per the [session management draft](https://openid.net/specs/openid-connect-session-1_0.html)| no | empty |https://myapp.com/logout/callback|
63
+
| uid_field | The field of the user info response to be used as a unique id | no | 'sub' | "sub", "preferred_username" |
64
+
| client_options | A hash of client options detailed in its own section | yes |||
65
+
66
+
### Client Config Options
67
+
68
+
These are the configuration options for the client_options hash of the configuration.
69
+
70
+
| Field | Description | Default | Replaced by discovery? |
0 commit comments