Details
-
Sub-task
-
Resolution: Done
-
Minor
-
None
-
None
-
None
-
Sprint 10, Sprint 11, Sprint 12, Sprint 13
Description
OIDC Metadata source will be an extension of the existing metadata source with the following new areas needed for the OIDC type only:
In the SPSSODescriptor section, add a new set of fields under the title: OAuth RP Extensions: (REQUIRED ITEMS UNDEFINED)
- token_endpoint_auth_method
- application_type
- client_uri
- software_id
- software_version
- sector_identifier_uri
- id_token_signed_response_alg
- id_token_encrypted_response_alg
- id_token_encrypted_response_enc
- userinfo_signed_response_alg
- userinfo_encrypted_response_alg
- userinfo_encrypted_response_enc
- request_object_signing_alg
- request_object_encryption_alg
- request_object_encryption_enc
- token_endpoint_auth_signing_alg
- default_max_age (number - int)
- require_auth_time (boolean)
- initiate_login_uri
- grant_types
- response_types
- scopes
Additionally, users can add multiples of each:
- default_acr_values
- request_uris
- post_logout_redirect_uris
- audience
In the Key Descriptor -> Key Info section
Add support for text fields (only for OIDC Metadata parent):
- JwksUri (standard string)
- JwksData (large text field)
- ClientSecret OR ClientSecretKeyReference (only on or the other - standard string)