Signed and encrypted response - SSO
The provider may sign and encrypt ID Token, UserInfo Response and Introspection Response messages.
Client registration parameters control what signing and encryption algorithms the client expects the provider to use.
ID Token
Registration parameters
| Name | Description |
|---|---|
| id_token_signed_response_alg | |
| id_token_encrypted_response_alg | |
| id_token_encrypted_response_enc |
UserInfo and Introspection response
Registration parameters
| Name | Description |
|---|---|
| userinfo_signed_response_alg | |
| userinfo_encrypted_response_alg | |
| userinfo_encrypted_response_enc |
References
This web page (including any attachments) may contain confidential, proprietary, or privileged information – not for disclosure without authorization from Ubisecure Inc. Copyright © 2022. All Rights Reserved.