Authorisation Servers

add oauth authorisation servers enabling data receivers to discover the configuration of your server, register their client applications, and get access tokens for api access in raidiam connect, organisations docid\ sproag20ez4b y2pel7wz add their oauth authorisation servers to enable the organisations docid\ sproag20ez4b y2pel7wz to easily discover the server's configuration, register their client applications, and get access tokens for api access if the underlying registration framework docid\ q6si2ya2zeapvwb028 er is configured to act as an registration framework docid\ q6si2ya2zeapvwb028 er , the client does not have to be registered by the data receiver as the responsibility to register clients lays solely on the data provider's authorisation server's side an oauth authorisation server, sometimes referred to as openid provider, is a system that issues access tokens to client applications ( organisations docid\ sproag20ez4b y2pel7wz software) after successfully authenticating the user and obtaining their authorization it acts as an intermediary between the client application and the resource server ( organisations docid\ sproag20ez4b y2pel7wz apis), ensuring that access to protected resources is granted securely and based on the resource owner's consent sequencediagram; participant app as client application participant as as authorisation server participant api as api (resource server) app >>as authenticate as >>app access token app >>api call api with access token api >>app http 200 ok the organisations docid\ sproag20ez4b y2pel7wz authorisation server handles requests for tokens, validates credentials, manages scopes, and maintains security policies enabling secure delegated access across different applications and services authorisation server object most of the information and uris to be configured for the authorisation server are used mainly for the discovery of the server by the customer that consents to share their data on a more technical level, client applications mainly use the openid discovery document uri, also known as the server's / well known endpoint this uri contains most of the information needed for a data receiver's application to interact with the server field description example customer friendly server name defined by the brand name shown to the receptor, add the name without abbreviations so that it can be recognized by the customer that will consent to share data maximum of 256 characters raidiam server openid discovery document uri the uri that points to the openid discovery document https //auth sandbox raidiam io/ well known/openid configuration https //auth sandbox raidiam io/ well known/openid configuration payload signing certificate uri location of the signature certificate uri https //raidiam com/payload uricertificate customer friendly logo uri define the brand logo uri, for more information see the logo details below https //raidiam com/logo svg developer portal uri uri developer portal https //developers raidiam com terms of service uri location of the terms of service uri https //raidiam com/tos notification webhook endpoint endpoint of the webhook notification note this endpoint will need confirmation visit the url sent to endpoint within 3 days to confirm subscription this uri is optional and allows the server to receive notification in case any relevant information on connect is added or updated webhook site/97askmbf c320 4982 b0ff f7728893aa description 1 character limit 256 characters 2\ description cannot have links 3\ required items in the description description of the brand, with additional information so the citizen knows what to choose without doubts 4\ guidance on what it can contain organisation introduction text start date of the institution institution differences contact channels this is where you can describe your brand, bringing any additional information to help the citizen make the right choice what's next learn about api resources docid\ rtutdsoxujjkxqx9rxafh you can add as a data provider add server docid\ tykucwbkh0mzly9tesuiw manage apis for discovery and integration docid\ x qbohmahvd2nrwqtc0zd