nginxinc / nginx-openid-connect

Reference implementation of OpenID Connect integration for NGINX Plus
https://www.nginx.com/products/nginx/
Other
200 stars 94 forks source link

Allow extra args to be provided to the OIDC auth endpoint #67

Closed alanwilkie-finocomp closed 1 year ago

alanwilkie-finocomp commented 1 year ago

Some OIDC Identity Providers provide extended capabilities by adding extra query string arguments to the authentication request.

Specifically, Keycloak allows a default identity provider to be specified by adding a "kc_idp_hint" parameter to the authentication request (see https://www.keycloak.org/docs/latest/server_admin/#_client_suggested_idp).

It would be great to be able to include extra request arguments provided by the configuration.