Get metadata of a given AuthorizationServer.
GET/.well-known/openid-configuration
Returns the OAuth 2.0 Authorization Server Metadata JSON document conforming to RFC 8414.
The response lists endpoint URIs for authorization, token issuance, JWKS, pushed authorization requests,
introspection, and revocation, all resolved from the service configuration or derived from registered companion services.
For OpenID Connect deployments, additional OIDC provider metadata fields are included automatically
based on the capabilities of the backing AuthorizationServer AuthState.
Resource servers and relying parties typically fetch this document once at startup and refresh it when an endpoint reference becomes stale.
Responses
- 200
- 500
Successful operation
- application/json
- Schema
- Example (from schema)
Schema
object
{
"authorization_endpoint": "https://nevis.net/auth/",
"token_endpoint": "https://nevis.net/token",
"registration_endpoint": "https://nevis.net/register",
"issuer": "https://nevis.net",
"introspection_endpoint_auth_methods_supported": [
"none"
],
"revocation_endpoint_auth_methods_supported": [
"none"
]
}
Misconfiguration detected, such as a missing issuer URI
- application/json
- Schema
- Example (from schema)
Schema
object
{
"error": "'issuer' requires an https scheme URL but the config is 'http://nevis.net'."
}
Loading...