Metadata Document

The OpenID Connect service is a metadata document that contains most of the information required for a client application to perform the authorization flow. This includes information such as the URLs to use and the location of the service's public signing keys.

The metadata document of CONNECT is a JSON document and its contents are fully described in the relevant specification.

An example of a client application for CONNECT is the following:

{ 
  "introspection_endpoint" : "https://scienceconnect.io/api/oauth/introspect", 
  "issuer" : "https://scienceconnect.io", 
  "authorization_endpoint" : "https://scienceconnect.io/api/oauth/authorize", 
  "token_endpoint" : "https://scienceconnect.io/api/oauth/token", 
  "response_types_supported" : [ "code", "token", "idtoken" ], 
  "grant_types_supported" : [ "authorization_code", "client_credentials", "refresh_token" ], 
  "end_session_endpoint" : "https://scienceconnect.io/api/oidc/logout", 
  "userinfo_endpoint" : "https://scienceconnect.io/api/oauth/user", 
  "jwks_uri" : "https://scienceconnect.io/api/oidc/jwk.json", 
} 

Every client application on CONNECT is assigned its own subdomain under scienceconnect.io.  For example, https://atypon.scienceconnect.io is the subdomain that Atypon uses for its own applications and https://atypon.scienceconnect.io/.well-known/openid-configuration is the URL for the OIDC metadata document for this application.

All OIDC endpoints in the metadata document follow the application specific URL. For instance, for an application using appname.scienceconnect.io, the authorization endpoint would be https://appname.scienceconnect.io/api/oauth/authorize