/Redirect client for authentication

Suggest Edits

Redirect client for authentication

For client redirection, oauth2.0 oauth/authorize endpoint is requested. this is interaction with the resource owner and get the authorization to access the protected resource.

Query Parameters

ParameterTypeDescription
client_id *stringThe client identifier issued to the client during the registration process
scope *stringtRequired if initiating authorization. The scope of the access request, must therefore contain the openid scope value.
claimsobjectRequired if initiating authorization. Object of the claims that client want to be shared
login_hintstringRequired if initiating authorization. A hint to the OpenID Provider regarding the end-user for whom authentication is being requested.

The value may contain an Personal number or Phone number, which identifies the end-user.

During request, LoginHint must contain only one parameter, 'personal_number' or 'msisdn'
id_token_hintstringRequired if authenticating authorization. An ID Token previously issued to the Client by the OpenID Provider being passed back as a hint to identify the end-user for whom authentication is being requested.
ui_localesstringSpecifies the preferred languages and scripts for the user interface. The value must be choosen from openid configuration (ui_locales_supported)
user_codestringRequired if authenticating authorization. A secret code, such as a password, that is known only to the user but verifiable by the TBC

Response Parameters

ParameterTypeDescription
auth_req_id *stringThis is a unique identifier to identify the authentication request made by the Client.
expires_in *integerA JSON number with a positive integer value indicating the expiration time of the "auth_req_id" in seconds since the authentication request was received.
intervalintegerA JSON number with a positive integer value indicating the minimum amount of time in seconds that the Client MUST wait between polling requests to the token endpoint.

Updated 3 months ago