HomeProductsDocsPlayground
Object Reference
Communities
Realms
Applications
Resource Servers
External Auth Servers
External Clients
Metadata Endpoint
Each Realm exposes an endpoint where consumers can find all the metadata related to it.
The Realm issuer being https://${realm.url}/oauth/${realm_name}, the discovery document can be found at
https://${realm.url}/oauth/${realm_name}/.well-known/openid-configuration
Example Discovery document :
https://${realm.url}/oauth/${realm_name}/.well-known/openid-configuration
1{
2  "issuer": "https://${realm.url}/oauth/${realm_name}",
3  "authorization_endpoint": "https://${realm.url}/oauth/${realm_name}/authorize",
4  "token_endpoint": "https://${realm.url}/services/apexrest/cym/oauth/${realm_name}/token",
5  "userinfo_endpoint": "https://${realm.url}/oauth/${realm_name}/userinfo",
6  "revocation_endpoint": "https://${realm.url}/services/apexrest/cym/oauth/${realm_name}/revoke",
7  "introspection_endpoint": "https://${realm.url}/services/apexrest/cym/oauth/${realm_name}/introspect",
8  "check_session_iframe": "https://${realm.url}/oauth/${realm_name}/checkSession",
9  "end_session_endpoint": "https://${realm.url}/oauth/${realm_name}/endSession",
10  "jwks_uri": "https://${realm.url}/oauth/${realm_name}/jwks",
11  "registration_endpoint": "https://${realm.url}/services/apexrest/cym/oauth/${realm_name}/clients",
12  "frontchannel_logout_supported": true,
13  "frontchannel_logout_session_supported": true,
14  "grant_types_supported": [
15    "authorization_code",
16    "refresh_token",
17    "client_credentials"
18  ],
19  "response_types_supported": ["code", "code id_token", "code token id_token"],
20  "subject_types_supported": ["public"],
21  "id_token_signing_alg_values_supported": ["RS256", "HS256", "HS512"],
22  "scopes_supported": [
23    "profile",
24    "openid",
25    "offline_access",
26    "contacts:read",
27    "https://acme.com/pictures/download"
28  ],
29  "token_endpoint_auth_methods_supported": [
30    "client_secret_post",
31    "client_secret_jwt"
32  ],
33  "revocation_endpoint_auth_methods_supported": ["client_secret_post"],
34  "introspection_endpoint_auth_methods_supported": [
35    "client_secret_post",
36    "private_key_jwt",
37    "client_secret_jwt"
38  ],
39  "response_modes_supported": ["query", "fragment"],
40  "code_challenge_methods_supported": ["S256"],
41  "claims_supported": [],
42  "introspection_endpoint_auth_signing_alg_values_supported": [
43    "RS256",
44    "HS256",
45    "HS512"
46  ],
47  "token_endpoint_auth_signing_alg_values_supported": ["HS256", "HS512"]
48}

Products

AuthenticationMultifactor AuthenticationBrandingApplication ManagementAPI Management

Documentation

FundamentalsGuidesDevelopObject ReferenceClass Reference