These three endpoints are used on both regular OAuth2 and OIDC
Here are the information you need:
Authorization Endpoint: https://hub.spookysrv.com/oauth2/authorize/arrow-up-right Token Endpoint: https://hub.spookysrv.com/index.php?route=/api/v2/oauth2/tokenarrow-up-right UserInfo Endpoint: https://hub.spookysrv.com/index.php?route=/api/v2/oauth2/userarrow-up-right
Spooky Services supports OpenID Connect (OIDC) for authentication.
OIDC config: https://auth.spookysrv.com/oidc/.well-known/openid-configurationarrow-up-right JWKS URI: https://auth.spookysrv.com/oidc/.well-known/jwks.jsonarrow-up-right
Spooky Services ONLY signs with a ES256 key for signature
You MUST verify the JWT Authenticity
Learn more at: Verifying JWT Authenticity
Last updated 7 months ago
