SstOIDCProviderMetadata
This class represents the metadata document for the OpenID Connect provider. Each provider supplies this document via its well-known url.
Instances of this class are then used to instantiate a <SstOIDCAuthorizationCodeFlow> subclass.
See https://openid.net/specs/openid-connect-discovery-1_0.html for more information.
Class Methods
forGoogle
Returns the OIDC Provider Metadata for Google.
Answers:
<SstOIDCProviderMetadata>
forMicrosoftCommon
Returns the OIDC Provider Metadata for Microsoft, authenticating users with a personal Microsoft account or a work or school account from Microsoft Entra ID.
See https://learn.microsoft.com/en-us/entra/identity-platform/v2-protocols-oidc#find-your-apps-openid-configuration-document-uri.
Answers:
<SstOIDCMicrosoftMetadata>
forMicrosoftConsumers
Returns the OIDC Provider Metadata for Microsoft, authenticating only users with a personal Microsoft account.
See https://learn.microsoft.com/en-us/entra/identity-platform/v2-protocols-oidc#find-your-apps-openid-configuration-document-uri.
Answers:
<SstOIDCMicrosoftMetadata>
forMicrosoftOrganizations
Returns the OIDC Provider Metadata for Microsoft, authenticating only users with work or school account from Microsoft Entra ID.
See https://learn.microsoft.com/en-us/entra/identity-platform/v2-protocols-oidc#find-your-apps-openid-configuration-document-uri.
Answers:
<SstOIDCMicrosoftMetadata>
forMicrosoftTenant:
Returns the OIDC Provider Metadata for Microsoft, authenticating only users from a specific Microsoft Entra tenant (directory members with a work or school account or directory guests with a personal Microsoft account).
See https://learn.microsoft.com/en-us/entra/identity-platform/v2-protocols-oidc#find-your-apps-openid-configuration-document-uri.
Arguments:
aTenantId: <String> - the domain name of the Microsoft Entra tenant or the tenant ID in GUID format.
Answers:
<SstOIDCMicrosoftMetadata>
fromDiscoveryUrl:
Creates an instance by retrieving the discovery document at the argument URL.
See https://openid.net/specs/openid-connect-discovery-1_0.html for more information.
Arguments:
sstUrl - a <SstUrl> pointing to the discovery document in JSON format for the OIDC Provider Metadata.
Raises:
<Error> when provider document does not validate according to the openID connect core spec.
fromIssuerUrl:
Creates an instance by retrieving the discovery document at the standard location for OIDC for the issuer identified by the argument url.
See https://openid.net/specs/openid-connect-discovery-1_0.html for more information.
Arguments:
sstUrl - a <SstUrl> identifying the issuer.
Answers:
<SstOIDCProviderMetadata>
Raises:
<Error> when provider document does not validate according to the openID connect core spec.
Instance Methods
authorizationEndpoint
Returns the authorization_endpoint url metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
claimsParameterIsSupported
Returns the claims_parameter_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Boolean>
issuer
Returns the issuer url metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
jwksUri
Returns the jwks_uri metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
providerPolicyURI
Returns the op_policy_uri metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
providerTosURI
Returns the op_tos_uri metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
requestParameterIsSupported
Returns the request_parameter_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Boolean>
requestURIParameterIsSupported
Returns the request_uri_parameter_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Boolean>
requireRequestURIRegistration
Returns the require_request_uri_registration metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Boolean>
serviceDocumentation
Returns the service_documentation metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<String>
supportedAuthMethodsForTokenEndpoint
Returns the token_endpoint_auth_methods_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedAuthSigningAlgorithmValuesForTokenEndpoint
Returns the token_endpoint_auth_methods_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedClaims
Returns the claims_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedClaimsLocales
Returns the claims_locales_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedClaimTypes
Returns the claim_types_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedDisplayValues
Returns the display_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedGrantTypes
Returns the grant_types_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedIdTokenEncryptionAlgorithmValues
Returns the id_token_encryption_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedIdTokenEncryptionEncValues
Returns the id_token_encryption_enc_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedIdTokenSigningAlgorithmValues
Returns the id_token_signing_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedRequestObjectEncryptionAlgorithmValues
Returns the request_object_encryption_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedRequestObjectEncryptionEncValues
Returns the request_object_encryption_enc_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedRequestObjectSigningAlgorithmValues
Returns the request_object_signing_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedResponseTypes
Returns the response_types_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedScopes
Returns the support_scopes metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedSubjectTypes
Returns the subject_types_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedUILocales
Returns the ui_locales_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedUserInfoEncryptionAlgorithmValues
Returns the userinfo_encryption_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedUserInfoEncryptionEncValues
Returns the userinfo_encryption_enc_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
supportedUserInfoSigningAlgorithmValues
Returns the userinfo_signing_alg_values_supported metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<Array> of <String>
tokenEndpoint
Returns the token_endpoint url metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
userinfoEndpoint
Returns the userinfo_endpoint url metadata.
See https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
Answers:
<SstUrl>
Last modified date: 01/13/2026