Shibboleth › Shibboleth - Users

OIDC. registration instructions

_‹ Previous Topic Next Topic _›

Classic

List

Threaded

1 message

Cath Messner

OIDC. registration instructions

I'm trying to unpack my understanding of the following link/text on OIDC below.

Would adding 'OIDC.Registration' under 'UnverifiedRelyingParty' - enable all OIDC services to leverage our IDP for authentication?

https://github.com/CSCfi/shibboleth-idp-oidc-extension/wiki/DynamicClientRegistration

"
The OIDC.Registration profile configuration bean enables support for the OpenID Connect Dynamic Client Registration 1.0. Currently the clients (relying parties) cannot be authenticated during the protocol sequence, so the only way to exploit this profile is through shibboleth.UnverifiedRelyingParty, see RelyingPartyConfiguration."

<bean id="shibboleth.UnverifiedRelyingParty" parent="RelyingParty">
    <property name="profileConfigurations">
        <list>
            ...
            <bean parent="OIDC.Registration" />
            ...
        </list>
    </property>
</bean>

--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to [hidden email]