The OpenID Connect ID Token is retrieved in almost the same way as an OAuth 2.0 access token when you use Implicit and Authorization Code grants.
The Implicit grant is similar to the Authorization Code grant type, but instead of using a code as an intermediary, the ID token is sent directly through browser redirect.
| Option | Description |
|---|---|
| OpenID Connect Flow | Sets the OpenID Connect method to use. |
| Client Identification | An alphanumeric string used to identify the client. |
| Response Mode | (For Azure only) Specifies how the authorization server sends the access token. Available options:
|
| State | (For Azure only) The value included in the request that is also added to the token response. Usually it is used to provide a randomly generated string to prevent a cross-site request forgery attack. |
| Resource | (For Azure only) The App ID URI of the web service. |
| Prompt | (For Azure only) Specifies if the authentication server prompts the user to log in or consent even if they are logged in. Possible values:
|
| Login Hint | (For Azure only) The string displayed as a login hint in the sign-in form. |
| Domain Hint | (For Azure only) Specifies the domain the user should use to sign in. |
| Authorization URL | The authorization server URL. |
| Access Token URL | The URL to get an access token from. |
| Redirect URL | The URL you will be redirected to after successful authorization. |
| Scope | The full scope string defining the requested permissions. |
| Response Type |
The type of the response received from the server. The following values are recognized: id_token, if the server returns only an ID token, or id_token token, if the server returns both an ID token and an access token.
|
| Get OpenID Token | Click this button to retrieve the access token. |
| Automation | Opens the Automated Token Profile editor. |