UpdateOidcConfigurationInput
is used to input data to update an OIDC configuration.
Table: UpdateOidcConfigurationInput
| Parameter | Type | Required | Default | Stability | Description |
|---|---|---|---|---|---|
| Some arguments may be required, as indicated in the Required column. For some fields, this column indicates that a result will always be returned for this column. | |||||
| Table last updated: Sep 23, 2024 | |||||
authorizationEndpoint | string | Long-Term | A URL to the endpoint a user should be redirected to when authorizing. Required for clients. | ||
clientID | string | yes | Long-Term | The unique identifier for the client. | |
clientSecret | string | yes | Long-Term | The client's password or passphrase for the identity provider. | |
defaultIdp | boolean | yes | Long-Term | The default identity provider. | |
domains | [string] | yes | Long-Term | The domains associated with the OIDC configuration. | |
enableDebug | boolean | yes | Long-Term | Whether to enable debugging. | |
federatedIdp | string | Long-Term | The Federated IdP. | ||
groupsClaim | string | Long-Term | The name of the claim to interpret as the groups in LogScale. The value in the claim must be an array of strings. Optional. Defaults to humio-groups. | ||
humioOwned | boolean | yes | Long-Term | Whether authentication is managed by LogScale. | |
id | string | yes | Long-Term | The unique identifier for the OpenId Connect (OIDC) configurtion to update. | |
issuer | string | yes | Long-Term | The issuer of the OIDC. | |
jwksEndpoint | string | Long-Term | A URL to the JWKS endpoint for retrieving keys for validating tokens. Required. | ||
lazyCreateUsers | boolean | yes | Long-Term | Whether to wait to create users until necessary. | |
Name | string | yes | Long-Term | The name of the OIDC identify provider. | |
registrationEndpoint | string | Long-Term | To use OIDC as a client, PUBLIC_URL must be set, LogScale must be registered as a client with your OpenID provider, and the provider must allow %PUBLIC_URL%/auth/oidc as a valid redirect endpoint for the client. | ||
scopeClaim | string | Long-Term | The claim or user attributes for the scope. | ||
scopes | [string] | yes | Long-Term | Comma-separated list of scopes to add in addition to the default requested scopes (openid, email, and profile). | |
tokenEndpoint | string | Long-Term | A URL to the token endpoint used to exchange a authentication code to an access token. Required for clients. | ||
tokenEndpointAuthMethod | string | yes | Long-Term | The authentication method used to authenticate LogScale against the token endpoint. Can either be client_secret_basic or client_secret_post for placing the client id and secret in either basic auth or post data, respectively. Defaults to client_secret_basic, or client_secret_post if client_secret_basic is not supported as per the discovery endpoint. | |
userClaim | string | yes | Long-Term | The name of the claim to interpret as username in LogScale. The value in the claim must be a string. Defaults to humio-user. Can be set to email if using emails as usernames. | |
userInfoEndpoint | string | Long-Term | A URL to the user info endpoint used to retrieve user information from an access token. | ||