Standard OAuth 2.0 / OpenID Connect endpoints

The Connect2id server supports the following standard OAuth 2.0 server and OpenID Connect provider endpoints:

Endpoint Purpose
Server discovery Discover the OAuth 2.0 / OpenID Connect endpoints, supported authentication methods and other features.
Server JWK set Retrieve the public server JSON Web Key (JWK) required to verify the authenticity of issued ID and access tokens.
Client registration Create, access, update and delete client registrations with the server.
Authorisation Send the end-user’s browser to this endpoint to request their authentication and authorisation. This endpoint is used in the code and implicit OAuth 2.0 flows which require end-user interaction.
Token Post an OAuth 2.0 grant (code, refresh token, resource owner password credentials, client credentials) to obtain an ID and / or access token.
Token introspection Validate an access token and retrieve its underlying authorisation (for resource servers).
Token revocation Revoke an obtained access or refresh token.
UserInfo Retrieve profile information and other attributes for a logged-in end-user.