Configuration and options

Kévin Chalet edited this page Jan 30, 2017 · 3 revisions

Configuration & Options.

OpenIddict has multiple options you can set to customize for your requirements/needs.

Options type Description Default
AuthenticationScheme string The base address used to uniquely identify the authorization server.
The URI must be absolute and may contain a path, but no query string or fragment part.
Unless AllowInsecureHttp has been set to true, an HTTPS address must be provided.
oidc-server
Issuer Uri The base address (absolute) used to uniquely identify the authorization server.
Unless AllowInsecureHttp has been set to true, an HTTPS address must be provided.
Automatically inferred from the request URL
AuthorizationEndpointPath
LogoutEndpointPath
PathString The path of the endpoint. Can be set to PathString.Empty to disable the endpoint. /connect/authorize
/connect/logout
AuthorizationCodeLifetime
AccessTokenLifetime
IdentityTokenLifetime
RefreshTokenLifetime
TimeSpan The period of time the token or code remains valid after being issued. 5 minutes
1 hour
20 minutes
14 days
UseSlidingExpiration bool Determines whether refresh tokens issued during a grant_type=refresh_token request should be generated with a new expiration date or should re-use the same expiration date as the original refresh token.
Set this property to true to assign a new expiration date each time a refresh token is issued, false to use the expiration date of the original refresh token.
true
ApplicationCanDisplayErrors bool Set to true if the web application is able to render error messages on the authorization endpoint. false
AllowInsecureHttp bool Set to true to allow incoming requests to arrive on HTTP and to allow `redirect_uri` parameters to have HTTP URI addresses.
Setting this option to false in production is strongly encouraged to mitigate man-in-the-middle attacks.
false
Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.