RapidIdentity Product Guide: New UI

Authorization Request

Issue a GET to /idp/profile/oauth2/auth with the following parameters:

response_type:

Type: String

Required: True

Description: The default value is "code."

client_id:

Type: String

Required: True

Description: The Client ID.

redirect_uri:

Type: String

Required: True

The registered callback URL.

scope:

Type: String

Required: False

Space-delimited API scopes to request. The default value is "basic."

state:

Type: String

Required: False

An opaque value used by your application to maintain state between the request and callback.

Note

If the authenticating user does not already have an authenticated Federation session, they will be redirected to the login page.

After successful authentication or validation of the user's current session, the browser will be redirected to the callback URL with a "code" parameter and a "state" parameter (if one was supplied in the initial request).

The "code" must be exchanged for an access token in the next step.

RapidIdentity currently supports a single scope of "basic" which gives read-only access to the authenticated user's profile.