Token_endpoint_auth_methods_supported is a OPTIONAL Openid-configuration JSON array containing a list of Client Authentication methods supported by this Token_endpoint.

The options are

  • client_secret_post
  • client_secret_basic
  • client_secret_jwt
  • private_key_jwt
as described in Section 9 of OpenID Connect Core 1.0 OpenID Connect Core 1.0.

Other authentication methods MAY be defined by extensions. If omitted, the default is client_secret_basic -- the HTTP Basic Authentication Scheme specified in Section 2.3.1 of OAuth 2.0 RFC 6749.

More Information#

There might be more information for this subject on one of the following: