Request-object (Section)#
Path: /profiles/profile{id, type}/settings/authorization-server/client-store/config-backed/client{id}/request-object
Enable request-object support where the client can send in a JWT with the request parameters. If enabled, a request object JWT MUST be provided by the client.
Parameters#
| Name | Type | Required | Default | Description |
|---|---|---|---|---|
| issuer | string | optional | The issuer of the request object’s JWT. If the issuer is not explicitly set, it must be the same value as the client_id of the client that makes the request. | |
| signature-verification-key | leafref | optional | A public key that corresponds to the private key that the issuer of the request object JWT used to sign the JWT | |
| allow-unsigned-for-by-value | boolean | optional | false | If set to true, then unsigned request objects sent by-value will be accepted. |
Subsections#
| Name | Type | Description |
|---|---|---|
| by-reference | Section | Enable the use of request object that are sent by-reference using the request_uri parameter |