A
Getting Started
Your Account
Services
Your Services
Create Service
Log out
Create Service
Basic
User Authentication
Developer Authentication
Authorization
Token
ID Token
Token Exchange
JWT Authz Grant
JWK Set
HSM
OIDC Endpoint
Federation
Document
CIBA
Device Flow
IDA
Service Name
Token Issuer Identifier
Service Description
Clients Per Developer
Client ID Alias Enabled
Enabled
Disabled
Attributes
Create Attribute
Supported Custom Client Metadata
Callback
Authentication Callback Endpoint
Authentication Callback API Key
Authentication Callback API Secret
SNS
Supported SNSes for Social Login at Authorization Endpoint
FACEBOOK
SNS API Credentials for Social Login at Authorization Endpoint
Supported Authentication Context Class References
Callback
Developer Authentication Callback Endpoint
Developer Authentication Callback API Key
Developer Authentication Callback API Secret
SNS
Supported SNSes for Social Login at Developer Console
FACEBOOK
SNS API Credentials for Social Login at Developer Console
Supported Grant Types
AUTHORIZATION_CODE
IMPLICIT
PASSWORD
CLIENT_CREDENTIALS
REFRESH_TOKEN
CIBA
DEVICE_CODE
TOKEN_EXCHANGE
JWT_BEARER
Supported Response Types
NONE
CODE
TOKEN
ID_TOKEN
CODE_TOKEN
CODE_ID_TOKEN
ID_TOKEN_TOKEN
CODE_ID_TOKEN_TOKEN
Supported Authorization Details Types
Supported Service Profiles
FAPI
OPEN_BANKING
Error Description
Omitted
Not omitted
Error URI
Omitted
Not omitted
Grant Management Action Required
Required
Optional
Grant Management Endpoint
Authorization Endpoint
Authorization Endpoint URI
Direct Authorization Endpoint Enabled
Enabled
Disabled
Supported Locales at Authorization UI
Supported Display Types at Authorization UI
PAGE
POPUP
TOUCH
WAP
Proof Key for Code Exchange (RFC 7636)
Required
Not required
S256 for Code Challenge Method
Required
Not required
Authorization Response Duration in seconds
iss Response Parameter
Included
Suppressed
Variability of loopback redirection URIs
Variable
Invariable
Token Endpoint
Token Endpoint URI
Direct Token Endpoint Enabled
Enabled
Disabled
Supported Client Authentication Methods
NONE
CLIENT_SECRET_BASIC
CLIENT_SECRET_POST
CLIENT_SECRET_JWT
PRIVATE_KEY_JWT
TLS_CLIENT_AUTH
SELF_SIGNED_TLS_CLIENT_AUTH
Validate PKI Certificate Chain for Mutual TLS Authentication
Enabled
Disabled
Trusted Root Certificates for Mutual TLS Authentication
Add Certificate
Client ID Omission
Allow
Disallow
OpenID on Refresh
Remove unless offline_access
No action
Revocation Endpoint
Revocation Endpoint URI
Direct Revocation Endpoint Enabled
Enabled
Disabled
Introspection Endpoint
Introspection Endpoint URI
Direct Introspection Endpoint Enabled
Enabled
Disabled
Pushed Authorization Request Endpoint
Pushed Authorization Request Endpoint
Pushed Authorization Request Duration
PAR Use
Mandatory
Optional
Request Object
Request Object
Mandatory
Optional
Request Object Processing
Backward compatible
JAR compatible
nbf Claim
Required
Optional
Encryption In Front Channel
Required
Optional
Encryption Algorithm Match
Required
Optional
Encryption Encoding Algorithm Match
Required
Optional
Audience Validation
Skip
Perform
Access Token
Access Token Type
TLS Client Certificate Bound Access Tokens
Supported
Not supported
Access Token Duration in seconds
Single Access Token Per Subject
Enabled
Disabled
Access Token Signature Algorithm
Select
RS256
RS384
RS512
ES256
ES384
ES512
PS256
PS384
PS512
ES256K
EdDSA
Access Token Signature Key ID
Refresh Token
Refresh Token Duration in seconds
Refresh Token Duration Takeover
Enabled
Disabled
Refresh Token Duration Reset
Enabled
Disabled
Refresh Token Continuous Use
Kept
Not kept
Token Expiration Link
Linked
Not Linked
Idempotency
Enabled
Disabled
Scope
Supported Scopes
Create Scope
Scope Request
Required
Optional
ID Token Duration in seconds
Allowable Clock Skew
Claim
Supported Claim Types
NORMAL
AGGREGATED
DISTRIBUTED
Supported Claim Locales
Supported Claims
Claim Shortcut
Restrictive
Nonrestrictive
Type of the aud claim
Select
unspecified
array
string
Reissuable
Enabled
Disabled
Identifiable Clients Only
Enabled
Disabled
Confidential Clients Only
Enabled
Disabled
Permitted Clients Only
Enabled
Disabled
Encrypted JWT Rejected
Enabled
Disabled
Unsigned JWT Rejected
Enabled
Disabled
Identifiable Clients Only
Enabled
Disabled
Encrypted JWT Rejected
Enabled
Disabled
Unsigned JWT Rejected
Enabled
Disabled
JWK Set Endpoint
JWK Set Endpoint URI
Direct JWK Set Endpoint Enabled
Enabled
Disabled
JWK Set Content
ID Token Signature Key ID
User Info Signature Key ID
Authorization Signature Key ID
HSM Enabled
Enabled
Disabled
User Info Endpoint
User Info Endpoint URI
Direct User Info Endpoint Enabled
Enabled
Disabled
Client Registration Endpoint
Dynamic Client Registration Supported
Supported
Not Supported
Dynamic Client Registration's scope Parameter
Enabled
Disabled
Registration Endpoint URI
Registration Management Endpoint base URI
Support UNAUTHORIZED on Client Configuration
Enabled
Disabled
DCR with Duplicate Software ID
Block
Accept
MTLS Endpoint Aliases
Create MTLS Endpoint Alias
Federation Support
Enabled
Disabled
Organization Name
Authorities
Trust Anchors
Create Trust Anchor
JWK Set
Signed JWK Set URI
Registration Endpoint
Client Registration Types
AUTOMATIC
EXPLICIT
Signature Key ID
Entity Configuration Duration
Service Data Policy URI
Terms of Service URI
Service Documentation for Developers URI
Backchannel Authentication Endpoint
Supported Backchannel Token Delivery Modes
POLL
PING
PUSH
Backchannel Auth Req ID Duration
Backchannel Polling Interval
Backchannel User Code Parameter Supported
Supported
Not supported
Binding Message in FAPI Context
Required
Not required
Device Authorization Endpoint
Verification URI
Verification URI with Placeholder
Verification Code Duration
Polling Interval
User Code Character Set
Select
BASE20
NUMERIC
User Code Length
Trust Frameworks
Identity Evidence
Identity Documents
Verification Methods
Verified Claims
Predefined Transformed Claims
Document Types
Document Check Methods
Document Validation and Verification Methods
Electronic Record Types
Attachment Types
EMBEDDED
EXTERNAL
Digest Algorithms
Access Token for External Attachments
Embed automatically
Embed manually
Validation Schema Set
Select
unspecified
standard
standard+id_document
Create