Pushed Authorization Request (PRIVATE_KEY_JWT)
POST {{authPath}}/{{envID}}/as/par
This PingOne collection contains only the requests without documentation. For the official PingOne Platform API documentation, see Pushed Authorization Request (PRIVATEKEYJWT).
Request Params
| Key | Datatype | Required | Description |
|---|---|---|---|
code_challenge_method | string | Specifies the computation logic used to generate the code_challenge string. | |
nonce | string | A string that is used to associate a client session with a token to mitigate replay attacks. | |
redirect_uri | string | A string that specifies the URL that specifies the return entry point of the application. This is a required property. | |
response_type | string | The code or token type returned by an authorization request. | |
scope | string | Permissions that determine the resources that the application can access. |
Request Body
[{"name"=>"response_type", "value"=>"token", "datatype"=>"string"}, {"name"=>"redirect_uri", "value"=>"{{redirect_uri}}", "datatype"=>"string"}, {"name"=>"scope", "value"=>"openid", "datatype"=>"string"}, {"name"=>"client_assertion", "value"=>"{{privateKeyJWT}}", "datatype"=>"string"}, {"name"=>"client_assertion_type", "value"=>"urn:ietf:params:oauth:client-assertion-type:jwt-bearer", "datatype"=>"string"}]