LoginRadius DocsDocs
DocumentationAPI ReferencesSDKsChangelogs

OAuth Authorization Server Metadata (OAuth app)

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the given OAuth app. Use this endpoint for OAuth 2.0 client discovery when using the OAuth flow path.

GET
/oauth/{OAuthAppName}/.well-known/oauth-authorization-server

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the given OAuth app. Use this endpoint for OAuth 2.0 client discovery when using the OAuth flow path.

Authorization

apikey<token>

Tenant API Key for authentication

In: query

Path Parameters

OAuthAppName*string

OAuth App Name

Response Body

application/json

application/json

application/json

curl -X GET "https://TenantName.hub.loginradius.com/oauth/example_oauth_app/.well-known/oauth-authorization-server"
{
  "issuer": "https://{TenantEndpoint}/service/oidc/{oidcAppName}",
  "authorization_endpoint": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/authorize",
  "token_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/token",
  "jwks_uri": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/jwks",
  "response_types_supported": [
    "code"
  ],
  "grant_types_supported": [
    "authorization_code",
    "refresh_token",
    "urn:ietf:params:oauth:grant-type:device_code"
  ],
  "token_endpoint_auth_methods_supported": [
    "none",
    "client_secret_post",
    "client_secret_basic"
  ],
  "registration_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/register",
  "scopes_supported": [
    "openid",
    "email",
    "phone",
    "profile",
    "address"
  ],
  "response_modes_supported": [
    "query",
    "form_post",
    "fragment"
  ],
  "code_challenge_methods_supported": [
    "S256"
  ],
  "revocation_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/revoke",
  "revocation_endpoint_auth_methods_supported": [
    "none",
    "client_secret_post",
    "client_secret_basic"
  ],
  "device_authorization_endpoint": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/device/authorize",
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256"
  ],
  "subject_types_supported": [
    "public"
  ],
  "ClientIdMetadataDocumentSupported": true
}
{
  "error": "string",
  "error_description": "string"
}
{
  "error": "string",
  "error_description": "string"
}

Retrieve OAuth tokens POST

Retrieves OAuth tokens for authentication and authorization purposes.

OAuth Authorization Server Metadata (no app name) GET

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the OAuth flow without an app name in the path. Issuer and endpoints use the base path /oauth.