Oidc
7 endpoints
GET /.well-known/openid-configuration
Discovery
Response:
`any`GET /jwks
Jwks
Response:
`any`GET /authorize
Authorize Redirect
Start OAuth flow: save the CLI’s callback, redirect to Keycloak.
Parameters:
| Name | In | Required | Description |
|---|---|---|---|
response_type | query | Yes | — |
client_id | query | Yes | — |
redirect_uri | query | Yes | — |
scope | query | No | — |
state | query | No | — |
nonce | query | No | — |
Response:
`any`POST /authorize
Authorize
Request body:
{
user_id: `string`
email: `string`
name: `string`
nonce?: `string` | `null`
}Response:
`any`GET /callback
Oidc Callback
Handle Keycloak callback: exchange code, create API auth code, redirect to CLI.
Parameters:
| Name | In | Required | Description |
|---|---|---|---|
code | query | No | — |
state | query | No | — |
error | query | No | — |
Response:
`any`POST /token
Token
Request body:
{
grant_type: `string`
code: `string`
}Response:
`any`GET /userinfo
Userinfo
Parameters:
| Name | In | Required | Description |
|---|---|---|---|
authorization | header | No | — |
Response:
`any`Last updated on