Endpoint URL: /{customerId}/login/.well-known/openid-configuration
Description
Returns the discovery document, a set of OIDC values that can be retrieved by a client; using these values enables OIDC clients to configure themselves. For example, you shouldn’t have to hard-code the token URL in a client. Instead, the client can simply connect to the well-known endpoint and retrieve the token URL itself.
The discovery document is more formally referred to as the “well-known endpoint;” that’s why the string well-known appears in the endpoint URL.
Respects the API Client Allow List: No
URI Parameters
No parameters are required in order to call the /{customer_id}/login/.well-known/openid-configuration endpoint.
Authentication
This endpoint does not require authentication.
Sample Request (curl)
The following command returns information from the discovery document for the organization with the customer ID 00000000-0000-0000-0000-000000000000:
curl \
https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/.well-known/openid-configuration
Responses
200 OK
If your call to this endpoint succeeds, you'll get back the configuration values found on the discovery document:
{
"issuer": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login",
"authorization_endpoint": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/authorize",
"token_endpoint": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/token",
"introspection_endpoint": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/token/introspect",
"revocation_endpoint": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/token/revoke",
"userinfo_endpoint": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/profiles/oidc/userinfo",
"jwks_uri": "https://v1.api.us.janrain.com/00000000-0000-0000-0000-000000000000/login/jwk",
"response_types_supported": [
"code"
],
"subject_types_supported": [
"public"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"grant_types_supported": [
"authorization_code",
"refresh_token"
],
"token_endpoint_auth_methods_supported": [
"client_secret_basic",
"client_secret_post"
],
"scopes_supported": [
"openid",
"profile",
"email",
"address",
"phone"
],
"claims_supported": [
"sub",
"iss",
"auth_time",
"acr",
"name",
"given_name",
"address",
"family_name",
"middle_name",
"preferred_username",
"gender",
"birthdate",
"updated_at",
"phone_number",
"phone_number_verified",
"email",
"email_verified"
],
"code_challenge_methods_supported": [
"S256"
}