Page tree


 

This documentation supports the 22.3 version of BMC Helix Single Sign-On, which is available only to BMC Helix customers (SaaS). 

To view an earlier version, select the version from the Product version menu.

BMC Helix Single Sign-On provides the following OAuth 2.0 endpoints:

/rsso/oauth2/v1.1/token

Issues the access/refresh tokens. Additionally, this endpoint supports JWT as Authorization Grant , returns the token_type parameter in the response, and may use JWT for Client Authentication . For more information, see Token Endpoint .

/rsso/oauth2/token

Issues the access/refresh tokens. Additionally, this endpoint supports JWT as Authorization Grant and may use JWT for Client authentication . For more information, see Token Endpoint .

/rsso/oauth2/authorize

Obtains the OAuth2 authorization code. For more information, see Authorization Endpoint .

/rsso/oauth2/revoke

Enables BMC Helix SSO to invalidate its tokens if the end user logs out or changes identity. Additionally, this endpoint may use JWT for Client authentication . For more information, see Revocation Endpoint .

/rsso/oauth2/introspect

Enables BMC Helix SSO to check the validity of access tokens and obtain meta-information such as which end user and which scopes are associated with the token. Additionally, this endpoint may use JWT for Client authentication . For more information, see Introspection Endpoint .

/rsso/oauth2/userinfo

Retrieves the consented UserInfo and other claims about the logged-in end user in BMC Helix SSO. For more information, see UserInfo Endpoint .

/rsso/oauth2/jwks

Returns information about the JWK Set for the specified OAuth provider. For more information, see JWKS Endpoint .

/rsso/.well-known/openid-configuration

Retrieves the OpenID Connect provider's configuration information. For more information, see OpenID Connect Configuration Endpoint .  



Write a comment...