...
| Tip | ||
|---|---|---|
| ||
In WSO2 Identity Server, the default OpenID Provider Issuer location path is set to To move the OpenID provider issuer location path to the root
|
Configuring the OpenID Provider Issuer location
In WSO2 Identity Server, the resident IdP Entity ID for OpenID Connect can be configured as the OpenID Provider Issuer location. Follow the instructions given below to configure the OpenID Provider Issuer location.
Open the
identity.xml file found in the<IS_HOME>/repository/conf/identity/folder and set the following property to true.Code Block <UseEntityIdAsIssuerInOidcDiscovery>true</UseEntityIdasIssuerInOidcDiscovery>
Warning In future releases, the Entity ID will be used as the OpenID Provider Issuer location by default and will not need to be enabled manually using the property mentioned above. Therefore, the
<UseEntityIdAsIssuerInOidcDiscovery>property will be deprecated in the next release.Log in to the management console.
- Click Resident under Identity Providers on the Main tab.
- Expand the Inbound Authentication Configuration section and then expand OAuth2/OpenID Connect Configuration.
Enter a valid OpenID Provider issuer location as the Identity Provider Entity Id value.
Tip A valid OpenID Provider Issuer location in WSO2 Identity Server has the following format.
Code Block title OpenID Provider Issuer URL format <Host>/oauth2/{issuer}<Host>: The host number of WSO2 Identity Server (e.g., https://localhost:9443)
{issuer}: The issuer path component. This value can be either ‘token’ or ‘oidcdiscovery’.
Code Block title Sample OpenID Provider Issuer location https://localhost:9443/oauth2/token
Obtaining the OpenID Provider Issuer location
Once the issuer location has been configured as instructed in the previous section, you can send a request to the endpoint to obtain the configured OpenID Provider Issuer location or to confirm that it has been set properly.
The following information is required to make a request.
...