search

IdentityModel / oidc-client-js

OpenID Connect (OIDC) and OAuth2 protocol support for browser-based JavaScript applications
Apache License 2.0
2.43k stars 841 forks source link

How do i include client_secret on oidcSettings #1251

Closed zsanagustin closed 3 years ago

zsanagustin commented 4 years ago

How do i include client_secret on oidcSettings? whats the proper key for client secret?

wallcrosstype commented 3 years ago

I think it's not supported, already explains in #1083

brockallen commented 3 years ago

Set the client_secret on the settings:

https://github.com/IdentityModel/oidc-client-js/blob/dev/src/OidcClientSettings.js#L22

But IIRC it's just passed in the POST body (as allowed by the spec). It will not be passed via HTTP basic auth in the Authorization header.

brockallen commented 3 years ago

Oh we just added support for sending the credentials via HTTP Basic auth in the Authorization header.