PingOne DaVinci

Configuring OIDC settings

Configure OpenID Connect (OIDC) for your application to enable it as a method for invoking flows.

Steps

  1. Click the Applications tab.

  2. Find the application and click Edit.

  3. Click the OIDC tab.

  4. Optional: Click Regenerate Client Secret to create a new client secret.

    Generating a new client secret invalidates the previous secret.

  5. Reveal and copy the Client Secret for use in OIDC connections.

  6. In the Redirect URLs field, enter one or more redirect URLs for the application.

  7. In the Logout URLs field, enter one or more logout URLs for the application.

  8. In the Scopes section, select one or more scopes based on your application’s needs.

    Option Description

    OIDC

    Select the OIDC check box.

    Profile

    Select the Profile check box.

    Flow Analytics

    Select the Flow Analytics check box.

  9. In the Grants section, select one or more grants based on your application’s needs.

    Option Description

    Authorization Code

    Select the Authorization Code check box.

    Implicit

    Select the Implicit check box.

    Client Credentials

    Select the Client Credentials check box.

  10. Copy the Issuer.

  11. Copy the Token Endpoint.

  12. Copy the UserInfo Endpoint.

  13. Copy the JWKS Endpoint.

  14. Copy the JWKS.

  15. Click the Enforce receiving signed requests? toggle to require that incoming requests be signed.

  16. Provide a method for verifying service provider JSON web key sets (JWKS):

    Choose from:

    • In the Service Provider (SP) JWKS URL field, enter a URL.

    • In the Service Provider (SP) JWKS Keys to Verify Authorization Request Signature field, enter one or more keys.

  17. Click Apply.