OidcConfigInfo

The unique identifier for the registered OIDC application. Valid range is 1-10.

The name of the OIDC application as registered with the identity provider.

The X.509 CA certificate for validating SSL/TLS connections to the identity provider when using self-signed or enterprise certificates.

The OAuth client ID assigned by the identity provider for authentication requests.

The OAuth client secret used to authenticate the application with the identity provider.

Custom identifier your end users will use to sign in with SSO.

A custom field mapping to extract the username from the OIDC token when the standard username claim is insufficient.

Additional authentication parameters to include in the OIDC authorization request as a query string. Useful for provider-specific extensions.

The issuer URL of the identity provider, which serves as the base URL for OIDC endpoints and configuration discovery.

The callback URL where the identity provider redirects users after successful authentication. This URL must be registered with the identity provider.

The OAuth scopes requested from the identity provider, which determine what user information is accessible (e.g., 'openid profile email').

An additional secret credential used by the identity provider for authentication.

The grace period in minutes before the SSO token expires when the system should proactively refresh the token to maintain seamless user access.

The claim field from the OIDC token to use as the unique user identifier (e.g., 'email', 'sub', or a custom claim).