OpenID Token
OpenID Connect is first and foremost about verifying the identity of the End-User and obtaining basic user information.
The ID Token may contain a reference to scim_id
.
Authorization Code Grant (with a shortcut)
The below request initiates an authorization code grant for OpenID Connect. For the purpose of this website, the login_hint
query parameter is leveraged to auto login a user for which a user id has specified.
The result of this request is an authorization code
which in turn can be exchanged for an access token
and an id token
.
/oauth/authorize?login_hint=
&response_type=code&client_id=9b19cc7e-a6b9-430b-97a3-68c0166937e1&scope=openid&nonce=456&redirect_uri=https://idp.scim.dev/redirectGet the ID Token
Now exchange the authorization code
for an access token
and an id token
.
/oauth/token
{}
Retrieve user information
OpeniD Connect allows retrieving user information via the userinfo
endpoint.
Note that this endpoint may return scim_id
and scim_location
.
/oauth/userinfo