Discover OpenID Connect endpoints of Asgardeo

# Discover OpenID Connect endpoints of Asgardeo

When you build OpenID Connect login in your application using Asgardeo as your identity provider, you need to get the OpenID Connect endpoints and configurations from Asgardeo.

You can do this by invoking the discovery endpoint API or by using the Asgardeo Console as explained below.

# Prerequisite

To get started, you need to have an application registered in Asgardeo:

# Use the discovery endpoint

OpenID Connect Discovery allows you to discover the metadata such as endpoints, scopes, response types, claims, and supported client authentication methods of identity providers such as Asgardeo.

Applications can dynamically discover the OpenID Connect identity provider metadata by calling the OpenID Connect discovery endpoint. The structure of the request URL is as follows: <issuer>/.well-known/openid-configuration.

Issuer of Asgardeo<organization_name>/oauth2/token

Discovery endpoint of Asgardeo<organization_name>/oauth2/token/.well-known/openid-configuration

Sample request

Sample response

   "introspection_endpoint" : "",
   "end_session_endpoint" : "",
   "registration_endpoint" : "",
   "token_endpoint" : "",
   "jwks_uri" : "",
   "revocation_endpoint" : "",
   "authorization_endpoint" : "",
   "issuer" : ""

# Get endpoints from the console

Some applications and SDKs are not capable of dynamically resolving endpoints from OpenID Connect discovery. For such applications, you need to configure endpoints manually.

You can get the endpoints from the console as follows:

  1. On the Asgardeo Console (opens new window), go to Applications.

  2. Select an OIDC application from the list.

  3. Go to the Info tab of the application and find the server endpoints to your organization. app-help-panel-for-endpoints

# What's next?

Explore how OpenID Connect endpoints are used when you implement login to your applications: