Configure the OIDC RP

The RP functionality is configured using the ‘[oidc]’ and ‘[oidc:<op-id>]’ stanzas. Multiple OPs may be configured for authentication by creating a separate ‘[oidc:<op-id>]’ stanza for each OP, where the ‘<op-id>’ qualifier is a unique name for the OP. This qualifier can then be used to distinguish authentication requests for different OPs, using the ‘iss’ argument to the ‘/pkmsoidc’ landing page. A default OP might also be specified using the default-op configuration entry, used as the default if no OP is specified in the iss argument to the ‘/pkmsoidc?iss=’ landing page.

Details of the configuration entries for the OP can be located in the stanza reference: [oidc:default] stanza

Parent topic: OpenID Connect (OIDC) authentication