JSON Web Key Set
This contains the signing key(s) the RP uses to validate signatures from the OP.
Responses
- 200
ok
application/json
Schema
Example (from schema)
Schema
- Array [
- Array [
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- ]
- ]
keys undefined[] required
Algorithm string required
CertificateThumbprintSHA1 string required
CertificateThumbprintSHA256 string required
Certificates undefined[] required
AuthorityKeyId string required
BasicConstraintsValid boolean required
CRLDistributionPoints string[] required
DNSNames string[] required
EmailAddresses string[] required
ExcludedDNSDomains string[] required
ExcludedEmailAddresses string[] required
ExcludedIPRanges undefined[] required
IP string required
Mask string required
ExcludedURIDomains string[] required
ExtKeyUsage int32[] required
Extensions undefined[] required
Critical boolean required
Id int32[] required
Value string required
ExtraExtensions undefined[] required
Critical boolean required
Id int32[] required
Value string required
IPAddresses array[] required
IsCA boolean required
Issuer required
CommonName string required
Country string[] required
ExtraNames undefined[] required
Type int32[] required
Value required
Locality string[] required
Names undefined[] required
Type int32[] required
Value required
Organization string[] required
OrganizationalUnit string[] required
PostalCode string[] required
Province string[] required
SerialNumber string required
StreetAddress string[] required
IssuingCertificateURL string[] required
KeyUsage int32 required
MaxPathLen int32 required
MaxPathLenZero boolean required
NotAfter date-time required
NotBefore date-time required
OCSPServer string[] required
PermittedDNSDomains string[] required
PermittedDNSDomainsCritical boolean required
PermittedEmailAddresses string[] required
PermittedIPRanges undefined[] required
IP string required
Mask string required
PermittedURIDomains string[] required
PolicyIdentifiers array[] required
PublicKey required
PublicKeyAlgorithm int32 required
Raw string required
RawIssuer string required
RawSubject string required
RawSubjectPublicKeyInfo string required
RawTBSCertificate string required
SerialNumber string required
Signature string required
SignatureAlgorithm int32 required
Subject required
CommonName string required
Country string[] required
ExtraNames undefined[] required
Type int32[] required
Value required
Locality string[] required
Names undefined[] required
Type int32[] required
Value required
Organization string[] required
OrganizationalUnit string[] required
PostalCode string[] required
Province string[] required
SerialNumber string required
StreetAddress string[] required
SubjectKeyId string required
URIs undefined[] required
ForceQuery boolean required
Fragment string required
Host string required
OmitHost boolean required
Opaque string required
Path string required
RawFragment string required
RawPath string required
RawQuery string required
Scheme string required
User required
password string required
passwordSet boolean required
username string required
UnhandledCriticalExtensions array[] required
UnknownExtKeyUsage array[] required
Version int32 required
CertificatesURL required
ForceQuery boolean required
Fragment string required
Host string required
OmitHost boolean required
Opaque string required
Path string required
RawFragment string required
RawPath string required
RawQuery string required
Scheme string required
User required
password string required
passwordSet boolean required
username string required
Key required
KeyID string required
Use string required
{
"keys": [
{
"Algorithm": "string",
"CertificateThumbprintSHA1": "string",
"CertificateThumbprintSHA256": "string",
"Certificates": [
{
"AuthorityKeyId": "string",
"BasicConstraintsValid": true,
"CRLDistributionPoints": [
"string"
],
"DNSNames": [
"string"
],
"EmailAddresses": [
"string"
],
"ExcludedDNSDomains": [
"string"
],
"ExcludedEmailAddresses": [
"string"
],
"ExcludedIPRanges": [
{
"IP": "string",
"Mask": "string"
}
],
"ExcludedURIDomains": [
"string"
],
"ExtKeyUsage": [
0
],
"Extensions": [
{
"Critical": true,
"Id": [
0
],
"Value": "string"
}
],
"ExtraExtensions": [
{
"Critical": true,
"Id": [
0
],
"Value": "string"
}
],
"IPAddresses": [
[
0
]
],
"IsCA": true,
"Issuer": {
"CommonName": "string",
"Country": [
"string"
],
"ExtraNames": [
{
"Type": [
0
],
"Value": {}
}
],
"Locality": [
"string"
],
"Names": [
{
"Type": [
0
],
"Value": {}
}
],
"Organization": [
"string"
],
"OrganizationalUnit": [
"string"
],
"PostalCode": [
"string"
],
"Province": [
"string"
],
"SerialNumber": "string",
"StreetAddress": [
"string"
]
},
"IssuingCertificateURL": [
"string"
],
"KeyUsage": 0,
"MaxPathLen": 0,
"MaxPathLenZero": true,
"NotAfter": "2023-09-28T03:46:07.174Z",
"NotBefore": "2023-09-28T03:46:07.175Z",
"OCSPServer": [
"string"
],
"PermittedDNSDomains": [
"string"
],
"PermittedDNSDomainsCritical": true,
"PermittedEmailAddresses": [
"string"
],
"PermittedIPRanges": [
{
"IP": "string",
"Mask": "string"
}
],
"PermittedURIDomains": [
"string"
],
"PolicyIdentifiers": [
[
0
]
],
"PublicKey": {},
"PublicKeyAlgorithm": 0,
"Raw": "string",
"RawIssuer": "string",
"RawSubject": "string",
"RawSubjectPublicKeyInfo": "string",
"RawTBSCertificate": "string",
"SerialNumber": "string",
"Signature": "string",
"SignatureAlgorithm": 0,
"Subject": {
"CommonName": "string",
"Country": [
"string"
],
"ExtraNames": [
{
"Type": [
0
],
"Value": {}
}
],
"Locality": [
"string"
],
"Names": [
{
"Type": [
0
],
"Value": {}
}
],
"Organization": [
"string"
],
"OrganizationalUnit": [
"string"
],
"PostalCode": [
"string"
],
"Province": [
"string"
],
"SerialNumber": "string",
"StreetAddress": [
"string"
]
},
"SubjectKeyId": "string",
"URIs": [
{
"ForceQuery": true,
"Fragment": "string",
"Host": "string",
"OmitHost": true,
"Opaque": "string",
"Path": "string",
"RawFragment": "string",
"RawPath": "string",
"RawQuery": "string",
"Scheme": "string",
"User": {
"password": "string",
"passwordSet": true,
"username": "string"
}
}
],
"UnhandledCriticalExtensions": [
[
0
]
],
"UnknownExtKeyUsage": [
[
0
]
],
"Version": 0
}
],
"CertificatesURL": {
"ForceQuery": true,
"Fragment": "string",
"Host": "string",
"OmitHost": true,
"Opaque": "string",
"Path": "string",
"RawFragment": "string",
"RawPath": "string",
"RawQuery": "string",
"Scheme": "string",
"User": {
"password": "string",
"passwordSet": true,
"username": "string"
}
},
"Key": {},
"KeyID": "string",
"Use": "string"
}
]
}
Loading...