We just added a new feature to increase security posture of APIs through OpenID Connect (OIC) support
-
You will now have the ability to configure OpenID Connect settings, including identity provider details, client credentials, and required scopes.
-
Token Validation and User Information Extraction: Implement the logic to validate OpenID Connect tokens received from identity providers and extract user identity information, such as username and roles, for further authorization checks.
-
Authorization Policies: Enable the use of OpenID Connect claims and user attributes in defining fine-grained access control policies for APIs.
