Standard OAuth 2.0 / OpenID Connect endpoints
The cidaas server supports the following standard OAuth 2.0 server and OpenID Connect provider endpoints:
| Endpoint | Purpose |
|---|---|
| Server discovery | Discover the OAuth 2.0 / OpenID Connect endpoints, supported authentication methods and other features.. Click here to know more.. |
|
Server JWK set |
Retrieve the public server JSON Web Key (JWK) required to verify the authenticity of issued ID and access tokens. Click here to know more.. |
| Authorization |
Send the end-user’s browser to this endpoint to request their authentication and authorization. This endpoint is used in the code and implicit OAuth 2.0 flows which require end-user interaction. Click here to know more.. |
| Token |
Post an OAuth 2.0 grant (code, refresh token, resource owner password credentials, client credentials) to obtain an ID and / or access token. Click here to know more.. |
| Token introspection |
Validate an access token and retrieve its underlying authorisation (for resource servers). Click here to know more.. |
| Token revocation |
Revoke an obtained access or refresh token. Click here to know more.. |
| UserInfo |
Retrieve profile information and other attributes for a logged-in end-user. Click here to know more.. |
| Check session iframe |
Retrieve profile information and other attributes for a logged-in end-user. Click here to know more.. |
| Logout (end-session) |
Sign out an end-user. Click here to know more.. |