Module jakarta.security
Annotation Interface OpenIdProviderMetadata
OpenIdProviderMetadata
annotation overrides the openid connect
provider's endpoint value, discovered using providerUri.
Expressions in attributes of type String
are evaluated.
-
Optional Element Summary
Modifier and TypeOptional ElementDescriptionRequired.Optional.Required.Required.Required.Required.Required.Required.Optional.
-
Element Details
-
authorizationEndpoint
String authorizationEndpointRequired. The URL for the OAuth2 provider to provide authentication. This must be a https endpoint.- Returns:
- URL for the OAuth2 provider.
- Default:
""
-
tokenEndpoint
String tokenEndpointRequired. The URL for the OAuth2 provider to give the authorization token- Returns:
- URL for the OAuth2 provider.
- Default:
""
-
userinfoEndpoint
String userinfoEndpointOptional. An OAuth 2.0 Protected Resource that returns Claims about the authenticated End-User.- Returns:
- URL for User Info.
- Default:
""
-
endSessionEndpoint
String endSessionEndpointOptional. OP endpoint to notify that the End-User has logged out of the site and might want to log out of the OP as well.- Returns:
- URL for logging out of server session.
- Default:
""
-
jwksURI
String jwksURIRequired. An OpenId Connect Provider's JSON Web Key Set documentThis contains the signing key(s) the RP uses to validate signatures from the OP. The JWK Set may also contain the Server's encryption key(s), which are used by RPs to encrypt requests to the Server.
- Returns:
- URL pointing to the JWK Set.
- Default:
""
-
issuer
-
subjectTypeSupported
String subjectTypeSupportedRequired. The supported subject Types by the Provider.- Returns:
- Default:
"public"
-
idTokenSigningAlgorithmsSupported
String idTokenSigningAlgorithmsSupportedRequired. The supported Signing algorithms for the ID token by provider.- Returns:
- Default:
"RS256"
-
responseTypeSupported
String responseTypeSupportedRequired. The supported response types by the Provider.- Returns:
- Default:
"code,id_token,token id_token"
-