OpenID Connect
Entry Point: /openidconnect/{scope}/form
The OpenID Connect resource family enables to authenticate shoppers using a third-party Identity Provider.
note
These links will only be available if OpenID Connect authentication is enabled.
Upgrade Access Token
Upgrade a public access token to a registered access token.
Workflow
- Start with root
GETthe link with rel: openidconnectform- Fill out the form
POSTthe form using the link with rel: submitaction
Request Fields
Type: openidconnect.create-openid
| Name | Description | Type |
|---|---|---|
authorization-code | The authorization code received from the Identity Provider after the user is authenticated. | string |
code-verifier | The PKCE code verifier generated by the client. | string |
original-redirect-uri | The front-end URL that the Identity Provider redirected the user to after authentication. | string |
Read Configuration
Read the OpenID Connect configuration that has been setup in Cortex.
Workflow
- Start with root
GETthe link with rel: referencesGETthe link with rel: openidconnectconfiguration- Render the response
Response
Sample
{
"self": {
"type": "openidconnect.openid-configuration",
"uri": "/openidconnect/mobee/configuration",
"href": "https://cortex.elasticpath.com/cortex/openidconnect/mobee/configuration"
},
"messages": [],
"links": [
{
"rel": "references",
"type": "references.references",
"uri": "/references",
"href": "https://cortex.elasticpath.com/cortex/references"
}
],
"authorization-url": "https://signin.elasticpath.com/oauth2/v1/authorize",
"client-id": "0oanktb6h9zAK2XiM357",
"scopes": "openid profile email"
}