PKCE configuration for the authorization server
- OAuth and OIDC authorization server
- Go to:
Loginapp >> OAuth 2.0/OIDC Authorization Servers >> OAuth 2.0 Grants and Flows >> OIDC Authorization Code / Hybrid Flow - In section Authorization Code in property PKCE Code Challenge Method select S256 required from the drop-down menu.
- IAM as an authorization server will enforce the use PKCE for all clients.
The configuration for an OpenID Connect OP is identical.