PingFederate Server

Configuring authorization detail types

To support rich authentication requests from OAuth clients, you must configure an authorization detail type for each type that you want PingFederate to support.

Before you begin

PingFederate must have an instance of an authorization detail processor that can process the authorization detail type that you’re configuring.

If you need information about the authorization detail processor instance when configuring an authorization detail type, go to the System → OAuth Settings → Authorization Detail Processors window, open the instance, and go to the Create Authorization Detail Processor Instance window and select the Summary tab.

About this task

To support rich authentication requests from OAuth clients, you must configure an authorization detail type for each type that you want PingFederate to support:

Steps

  1. In PingFederate, go to System → OAuth Settings → Authorization Detail Types.

  2. In the Authorization Detail Types window, click Add Authorization Detail Type.

  3. In the Add an Authorization Detail Type window:

    1. In the Type field, enter the name of a supported authorization detail type.

    2. Enter a Description for the authorization detail type.

    3. Select the Authorization Detail Processor instance to handle the authorization detail type.

    4. Click Save.

    Screen capture of the Add an Authorization Detail Type window

Next steps

To complete your configuration:

  1. Configure the external content user interface, adding an External Consent Authorization Details Attribute.

  2. Configure the OAuth client, selecting the check boxes for Allow Authorization Details and the authorization detail type that you configured in the Add an Authorization Detail Type window in step 3 of this topic.