Id-token-encryption (Section)#
Path: /profiles/profile/settings/authorization-server/client-store/config-backed/client/id-token-encryption
Enable Id token encryption as per JWE specification
Parameters#
| Name | Type | Required | Default | Description |
|---|---|---|---|---|
| encryption-key | leafref → /base:facilities/base:crypto/base:encryption-keys/base:encryption-key/base:id | required | - | The reference to encryption keystore containing encryption key |
| content-encryption-algorithm | enumeration (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512, A128GCM, A192GCM, A256GCM) | required | - | The encryption algorithm used to encrypt the payload of the JWE token |
| key-management-algorithm | enumeration (RSA1_5, RSA-OAEP, RSA-OAEP-256, ECDH-ES, ECDH-ES+A128KW, ECDH-ES+A192KW, ECDH-ES+A256KW) | required | - | The encryption algorithm for encrypting the content encryption key.Only asymmetric algorithms are supported as of 6.5.0 |