Use this flow, when you solely need to authenticate the user. This can be implemented without having to expose any secrets.
How it works
This flow requires the response_type=id_token parameter to indicate that you request an ID Token.
See the OIDC Details and Parameters for the full parameter lists.
Also check the documentation for OIDC ID Token on how to validate it and what information it contains.
Example
This link will initiate the OIDC Authorization Request and redirect you to the public page used for debugging OIDC workflow:
The parameters in detail:
Parameter | Description |
client_id | You will receive the client id from the Unidy team. |
redirect_uri | This is where the browser is redirected after a successful login. |
response_type | id_token indicates, that an ID Token is requested. |
scope | openid is the minimal scope needed to issue an ID Token. |