luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity

auth/oidc: documents the client_nonce parameter (#16403)

This commit is contained in:
Austin Gebauer 2022-07-21 09:34:46 -07:00 committed by GitHub
parent 133535fabe
commit 5062502756
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
website/content/api-docs/auth/jwt.mdx
View File

@ -306,6 +306,9 @@ Obtain an authorization URL from Vault to start an OIDC login flow.
of the form, "https://.../oidc/callback" where the leading portion is dependent on your Vault
server location, port, and the mount of the JWT plugin. This must be configured with Vault and the
provider. See [Redirect URIs](/docs/auth/jwt#redirect-uris) for more information.
- `client_nonce` `(string: <optional>)` - Optional client-provided nonce that
must match the `client_nonce` value provided during a subsequent request to the
[callback](/api-docs/auth/jwt#oidc-callback) API.
### Sample Payload
@ -354,6 +357,9 @@ against any bound claims, and if valid a Vault token will be returned.
be included in the the redirect following successful authentication on the provider.
- `code` `(string: <required>)` - Provider-generated authorization code that Vault will exchange for
an ID token.
- `client_nonce` `(string: <optional>)` - Optional client-provided nonce that must
match the `client_nonce` value provided during the prior request to the
[auth_url](/api-docs/auth/jwt#oidc-authorization-url-request) API.
### Sample Request