LoginRadius DocsDocs
DocumentationAPI ReferencesSDKsChangelogs

OAuth Authorization Server Metadata (OIDC, no app name)

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the OIDC flow without an app name in the path. Issuer and endpoints use the base path /oidc.

GET
/oidc/.well-known/oauth-authorization-server

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the OIDC flow without an app name in the path. Issuer and endpoints use the base path /oidc.

Authorization

apikey<token>

Tenant API Key for authentication

In: query

Response Body

application/json

application/json

application/json

curl -X GET "https://TenantName.hub.loginradius.com/oidc/.well-known/oauth-authorization-server"
{
  "issuer": "https://{TenantEndpoint}/service/oidc/{oidcAppName}",
  "authorization_endpoint": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/authorize",
  "token_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/token",
  "jwks_uri": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/jwks",
  "response_types_supported": [
    "code"
  ],
  "grant_types_supported": [
    "authorization_code",
    "refresh_token",
    "urn:ietf:params:oauth:grant-type:device_code"
  ],
  "token_endpoint_auth_methods_supported": [
    "none",
    "client_secret_post",
    "client_secret_basic"
  ],
  "registration_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/register",
  "scopes_supported": [
    "openid",
    "email",
    "phone",
    "profile",
    "address"
  ],
  "response_modes_supported": [
    "query",
    "form_post",
    "fragment"
  ],
  "code_challenge_methods_supported": [
    "S256"
  ],
  "revocation_endpoint": "https://{TenantEndpoint}/api/oidc/{oidcAppName}/revoke",
  "revocation_endpoint_auth_methods_supported": [
    "none",
    "client_secret_post",
    "client_secret_basic"
  ],
  "device_authorization_endpoint": "https://{TenantEndpoint}/service/oidc/{oidcAppName}/device/authorize",
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256"
  ],
  "subject_types_supported": [
    "public"
  ],
  "ClientIdMetadataDocumentSupported": true
}
{
  "error": "string",
  "error_description": "string"
}
{
  "error": "string",
  "error_description": "string"
}

OAuth Authorization Server Metadata (OIDC app) GET

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) for the given OIDC app. Use this endpoint for OAuth 2.0 client discovery when using the OIDC flow path. Response does not include OpenID Connect-specific fields (e.g. userinfo_endpoint, claims_supported).

OAuth Authorization Server Metadata (well-known URI, OIDC) GET

Returns OAuth 2.0 Authorization Server Metadata (RFC 8414) using the well-known URI pattern. Path format is /.well-known/oauth-authorization-server/service/oidc/{OIDCAppName}.