You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: en/includes/references/app-settings/oidc-settings-for-app.md
+6Lines changed: 6 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -242,6 +242,12 @@ Selecting the **Mandatory** option enforces the application to initiate an autho
242
242
243
243
OAuth 2.0 authorization requests can either include the authorization parameters in URL query strings or in a request object. A request object is typically a JSON Web Token (JWT) which encapsulates the authorization parameters. It can be signed and encrypted to respectively ensure data integrity and data confidentiality.
244
244
245
+
{% if product_name == "Asgardeo" or (product_name == "WSO2 Identity Server" and is_version > "7.2.0" ) %}
246
+
247
+
- **Enable signature validation** - Select this to accept only signed request objects. {{ product_name }} will reject unsigned request objects when you enable this option.
248
+
249
+
{% endif %}
250
+
245
251
- Under **Request object signing algorithm**, select a supported algorithm with which the request object will be signed.
246
252
247
253
- Under **Request object encryption algorithm**, choose a supported asymmetric encryption algorithm to perform the key exchange.
0 commit comments