---
title: Configuring OIDC settings
description: Configure OpenID Connect (OIDC) for your application to enable it as a method for invoking flows.
component: davinci
page_id: davinci:applications:davinci_configuring_openid
canonical_url: http://docs.pingidentity.com/davinci/applications/davinci_configuring_openid.html
revdate: May 28, 2024
section_ids:
  steps: Steps
  choose-from: Choose from:
---

# Configuring OIDC settings

Configure OpenID Connect (OIDC) *(tooltip: \<div class="paragraph">
\<p>An authentication protocol built on top of OAuth that authenticates users and enables clients (relying parties) of all types to request and receive information about authenticated sessions and users. OIDC is extensible, allowing clients to use optional features such as encryption of identity data, discovery of OpenID Providers (OAuth authorization servers), and session management.\</p>
\</div>)* for your application to enable it as a method for invoking flows.

## Steps

1. Click the **Applications** tab.

2. Find the application and click **Edit**.

3. Click the **OIDC** tab.

4. (Optional) Click **Regenerate Client Secret** to create a new client secret.

   Generating a new client secret invalidates the previous secret.

5. Reveal and copy the **Client Secret** for use in OIDC connections.

6. In the **Redirect URLs** field, enter one or more redirect URLs for the application.

7. In the **Logout URLs** field, enter one or more logout URLs for the application.

8. In the **Scopes** section, select one or more scopes based on your application's needs.

   | Option             | Description                              |
   | ------------------ | ---------------------------------------- |
   | **OIDC**           | Select the **OIDC** check box.           |
   | **Profile**        | Select the **Profile** check box.        |
   | **Flow Analytics** | Select the **Flow Analytics** check box. |

9. In the **Grants** section, select one or more grants based on your application's needs.

   | Option                 | Description                                  |
   | ---------------------- | -------------------------------------------- |
   | **Authorization Code** | Select the **Authorization Code** check box. |
   | **Implicit**           | Select the **Implicit** check box.           |
   | **Client Credentials** | Select the **Client Credentials** check box. |

10. Copy the **Issuer**.

11. Copy the **Token Endpoint**.

12. Copy the **UserInfo Endpoint**.

13. Copy the **JWKS Endpoint**.

14. Copy the **JWKS**.

15. Click the **Enforce receiving signed requests?** toggle to require that incoming requests be signed.

16. Provide a method for verifying service provider JSON web key sets (JWKS):

    ### Choose from:

    * In the **Service Provider (SP) JWKS URL** field, enter a URL.

    * In the **Service Provider (SP) JWKS Keys to Verify Authorization Request Signature** field, enter one or more keys.

17. Click **Apply**.