Globally unique UUID that identifies a specific Organization. The organization_id is critical to perform operations on an Organization, so be sure to preserve this value. You may also use the organization_slug or organization_external_id here as a convenience.
OIDC Connection object
Fields
Globally unique UUID that identifies a specific OIDC Connection.
A human-readable display name for the connection.
The callback URL for this OIDC connection. This value will be passed to the IdP to redirect the Member back to Stytch after a sign-in attempt.
The status of the connection. The possible values are pending or active. See the Update OIDC Connection endpoint for more details.
A case-sensitive https:// URL that uniquely identifies the IdP. This will be provided by the IdP.
The OAuth2.0 client ID used to authenticate login attempts. This will be provided by the IdP.
The secret belonging to the OAuth2.0 client used to authenticate login attempts. This will be provided by the IdP.
The location of the URL that starts an OAuth login at the IdP. This will be provided by the IdP.
The location of the URL that issues OAuth2.0 access tokens and OIDC ID tokens. This will be provided by the IdP.
The location of the IdP's JSON Web Key Set, used to verify credentials issued by the IdP. This will be provided by the IdP.
Name of the IdP. Enum with possible values: classlink, cyberark, duo, google-workspace, jumpcloud, keycloak, miniorange, microsoft-entra, okta, onelogin, pingfederate, rippling, salesforce, shibboleth, or generic.
Specifying a known provider allows Stytch to handle any provider-specific logic.
A space-separated list of custom scopes that will be requested on each SSOStart call. The total set of scopes will be the union of: the OIDC scopes openid email profile, the scopes requested in the custom_scopes query parameter on each SSOStart call, and the scopes listed in the OIDC Connection object.
An object that represents the attributes used to identify a Member. This object will map the IdP-defined User attributes to Stytch-specific values, which will appear on the member's Trusted Metadata.
{
"connection": {
"organization_id": "organization-test-07971b06-ac8b-4cdb-9c15-63b17e653931",
"connection_id": "oidc-connection-test-b6c714c2-7413-4b92-a0f1-97aa1085aeff",
"display_name": "Example OIDC Connection",
"redirect_url": "https://test.stytch.com/v1/b2b/sso/callback/oidc-connection-test-b6c714c2-7413-4b92-a0f1-97aa1085aeff",
"status": "active",
"issuer": "https://idp.example.com/",
"client_id": "s6BhdRkqt3",
"client_secret": "SeiGwdj5lKkrEVgcEY3QNJXt6srxS3IK2Nwkar6mXD4=",
"authorization_url": "https://idp.example.com/authorize",
"token_url": "https://idp.example.com/oauth2/token",
"userinfo_url": "https://idp.example.com/userinfo",
"jwks_url": "https://idp.example.com/oauth2/jwks",
"identity_provider": "generic",
}
}