Early Preview

This is currently very much a preview. Please feel free to try things out, but don't be upset if anything is not yet working. Feedback is welcome over on our GitHub Dicussions page.

class Duende.​IdentityServer.​Configuration.​EndpointsOptions

Assembly: Duende.IdentityServer

Inheritance: object → EndpointsOptions

Controls which protocol endpoints are enabled or disabled in IdentityServer.

Properties

public bool
EnableAuthorizeEndpoint
Gets or sets a value indicating whether the authorize endpoint ( <c>/connect/authorize</c> ) is enabled, which is the entry point for interactive authorization code and implicit flows.
Remarks Defaults to <c>true</c> .
public bool
EnableJwtRequestUri
Gets or sets a value indicating whether support for the <c>request_uri</c> parameter on the authorize endpoint is enabled, allowing JWT-Secured Authorization Requests (JAR) to be passed by reference.
Remarks Defaults to <c>false</c> due to the security implications described in <see href="https://datatracker.ietf.org/doc/rfc9101/">RFC 9101 section 10.4</see> . Enable only when clients require JAR by reference and the associated risks are mitigated.
public bool
EnableTokenEndpoint
Gets or sets a value indicating whether the token endpoint ( <c>/connect/token</c> ) is enabled, which issues access tokens, refresh tokens, and identity tokens.
Remarks Defaults to <c>true</c> .
public bool
EnableUserInfoEndpoint
Gets or sets a value indicating whether the user info endpoint ( <c>/connect/userinfo</c> ) is enabled, which returns claims about the authenticated user.
Remarks Defaults to <c>true</c> .
public bool
EnableDiscoveryEndpoint
Gets or sets a value indicating whether the discovery endpoint ( <c>/.well-known/openid-configuration</c> ) is enabled, which publishes server metadata.
Remarks Defaults to <c>true</c> .
public bool
EnableEndSessionEndpoint
Gets or sets a value indicating whether the end-session endpoint ( <c>/connect/endsession</c> ) is enabled, which initiates user logout.
Remarks Defaults to <c>true</c> .
public bool
EnableCheckSessionEndpoint
Gets or sets a value indicating whether the check-session endpoint ( <c>/connect/checksession</c> ) is enabled, which supports OpenID Connect session management via an iframe.
Remarks Defaults to <c>true</c> .
public bool
EnableTokenRevocationEndpoint
Gets or sets a value indicating whether the token revocation endpoint ( <c>/connect/revocation</c> ) is enabled, which allows clients to revoke access or refresh tokens.
Remarks Defaults to <c>true</c> .
public bool
EnableIntrospectionEndpoint
Gets or sets a value indicating whether the introspection endpoint ( <c>/connect/introspect</c> ) is enabled, which allows resource servers to validate tokens.
Remarks Defaults to <c>true</c> .
public bool
EnableDeviceAuthorizationEndpoint
Gets or sets a value indicating whether the device authorization endpoint ( <c>/connect/deviceauthorization</c> ) is enabled, which supports the OAuth 2.0 Device Authorization Grant.
Remarks Defaults to <c>true</c> .
public bool
EnableBackchannelAuthenticationEndpoint
Gets or sets a value indicating whether the backchannel authentication endpoint ( <c>/connect/ciba</c> ) is enabled, which supports Client-Initiated Backchannel Authentication (CIBA).
Remarks Defaults to <c>true</c> .
public bool
EnablePushedAuthorizationEndpoint
Gets or sets a value indicating whether the pushed authorization endpoint ( <c>/connect/par</c> ) is enabled, which allows clients to push authorization request parameters before initiating the authorization flow.
Remarks Defaults to <c>true</c> .
public bool
EnableOAuth2MetadataEndpoint
Gets or sets a value indicating whether the OAuth 2.0 authorization server metadata endpoint ( <c>/.well-known/oauth-authorization-server</c> ) is enabled.
Remarks Defaults to <c>true</c> .
public bool
EnableSamlMetadataEndpoint
Gets or sets a value indicating whether the SAML 2.0 metadata endpoint is enabled.
Remarks Defaults to <c>false</c> .
public bool
EnableSamlSigninEndpoint
Gets or sets a value indicating whether the SAML 2.0 single sign-on (SSO) endpoint is enabled.
Remarks Defaults to <c>false</c> .
public bool
EnableSamlSigninCallbackEndpoint
Gets or sets a value indicating whether the SAML 2.0 sign-in callback endpoint is enabled, which handles the service provider's response after authentication.
Remarks Defaults to <c>false</c> .
public bool
EnableSamlLogoutEndpoint
Gets or sets a value indicating whether the SAML 2.0 Single Logout (SLO) endpoint is enabled.
Remarks Defaults to <c>false</c> .
public bool
EnableSamlLogoutCallbackEndpoint
Gets or sets a value indicating whether the SAML 2.0 Single Logout callback endpoint is enabled, which handles the service provider's response after logout.
Remarks Defaults to <c>false</c> .

Methods

public bool
Equals​(object obj)
Inherited from object
protected void
Finalize​()
Inherited from object
public int
GetHashCode​()
Inherited from object
GetType​()
Inherited from object
protected object
MemberwiseClone​()
Inherited from object
public string
ToString​()
Inherited from object