Provider Metadata of Academic-ID (NFDI)

ACR Values Supported
0
1
Authorization Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/auth
Claim Types Supported
normal
Claims Locales Supported
Claims Parameter Supported
Claims Supported
aud
sub
iss
auth_time
name
given_name
family_name
preferred_username
email
acr
Code Challenge Methods Supported
plain
S256
Device Authorization Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/auth/device
Display Values Supported
Grant Types
authorization_code
implicit
refresh_token
password
client_credentials
urn:openid:params:grant-type:ciba
urn:ietf:params:oauth:grant-type:device_code
ID Token Encryption Alg Values Supported
RSA-OAEP
RSA-OAEP-256
RSA1_5
ID Token Encryption Enc Values Supported
A256GCM
A192GCM
A128GCM
A128CBC-HS256
A192CBC-HS384
A256CBC-HS512
ID Token Signing Alg Values Supported
PS384
RS384
EdDSA
ES384
HS256
HS512
ES256
RS256
HS384
ES512
PS256
PS512
RS512
Introspection Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/token/introspect
Issuerhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud
JWKS URIhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/certs
Privacy Policy URI
Registration Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/clients-registrations/openid-connect
Request Object Encryption Alg Values Supported
RSA-OAEP
RSA-OAEP-256
RSA1_5
Request Object Encryption Enc Values Supported
A256GCM
A192GCM
A128GCM
A128CBC-HS256
A192CBC-HS384
A256CBC-HS512
Request Object Signing Alg Values Supported
PS384
RS384
EdDSA
ES384
HS256
HS512
ES256
RS256
HS384
ES512
PS256
PS512
RS512
none
Request Parameter Supported
Request URI Parameter Supported
Require Request URI Registration
Response Modes Supported
query
fragment
form_post
query.jwt
fragment.jwt
form_post.jwt
jwt
Response Types Supported
code
none
id_token
token
id_token token
code id_token
code token
code id_token token
Revocation Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/revoke
Scopes Supported
initials
address
goeidToSub
MPGR_entryUUID_as_preferred_username
org
userservices
accounttype
oxUserId
basic
employeenumber
syncAndShareInstance
phone
roles
gwdg-internal-role
microprofile-jwt
oxContextId
emailCS
goesternMatrikelnummer
vpngroupsNetworkroles
subVPNUserType
acr
owncloud
displayName_to_preferred_username
usRoles
profile
goeId
offline_access
userContextId
goesternSAMAccountName
goesternQuellSystem
userServices_to_authorities
memberOfGoeId
openid
email
nfdi_attributes
memberofdisplayname
syncAttribute1
prefuid
AuthnContextClassRef
web-origins
mailAddresses
Service Documentation
Subject Types Supported
public
pairwise
Terms of Service URI
Token Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/token
Token Endpoint Auth Methods Supported
private_key_jwt
client_secret_basic
client_secret_post
tls_client_auth
client_secret_jwt
Token Endpoint Auth Signing Alg Values Supported
PS384
RS384
EdDSA
ES384
HS256
HS512
ES256
RS256
HS384
ES512
PS256
PS512
RS512
UI Locales Supported
Userinfo Encryption Alg Values Supported
RSA-OAEP
RSA-OAEP-256
RSA1_5
Userinfo Encryption Enc Values Supported
A256GCM
A192GCM
A128GCM
A128CBC-HS256
A192CBC-HS384
A256CBC-HS512
Userinfo Endpointhttps://keycloak.sso.gwdg.de/auth/realms/academiccloud/protocol/openid-connect/userinfo
Userinfo Signing Alg Values Supported
PS384
RS384
EdDSA
ES384
HS256
HS512
ES256
RS256
HS384
ES512
PS256
PS512
RS512
none

Last checked at 2024-11-21 05:19:58.