OpenMetadata/openmetadata-docs/content/v1.7.x/main-concepts/metadata-standard/schemas/configuration/authenticationConfiguration.md

---
title: authenticationConfiguration
slug: /main-concepts/metadata-standard/schemas/configuration/authenticationconfiguration
---

# AuthenticationConfiguration

*This schema defines the Authentication Configuration.*

## Properties

- **`clientType`** *(string)*: Client Type. Must be one of: `["public", "confidential"]`. Default: `"public"`.
- **`provider`**: Refer to *[../entity/services/connections/metadata/openMetadataConnection.json#/definitions/authProvider](#/entity/services/connections/metadata/openMetadataConnection.json#/definitions/authProvider)*.
- **`responseType`**: This is used by auth provider provide response as either id_token or code. Refer to *[#/definitions/responseType](#definitions/responseType)*.
- **`providerName`** *(string)*: Custom OIDC Authentication Provider Name.
- **`publicKeyUrls`** *(array)*: List of Public Key URLs.
  - **Items** *(string)*
- **`tokenValidationAlgorithm`** *(string)*: Token Validation Algorithm to use. Must be one of: `["RS256", "RS384", "RS512"]`. Default: `"RS256"`.
- **`authority`** *(string)*: Authentication Authority.
- **`clientId`** *(string)*: Client ID.
- **`callbackUrl`** *(string)*: Callback URL.
- **`jwtPrincipalClaims`** *(array)*: Jwt Principal Claim.
  - **Items** *(string)*
- **`jwtPrincipalClaimsMapping`** *(array)*: Jwt Principal Claim Mapping.
  - **Items** *(string)*
- **`enableSelfSignup`** *(boolean)*: Enable Self Sign Up. Default: `false`.
- **`ldapConfiguration`**: LDAP Configuration in case the Provider is LDAP. Refer to *[./ldapConfiguration.json](#ldapConfiguration.json)*.
- **`samlConfiguration`**: Saml Configuration that is applicable only when the provider is Saml. Refer to *[../security/client/samlSSOClientConfig.json](#/security/client/samlSSOClientConfig.json)*.
- **`oidcConfiguration`**: Oidc Configuration for Confidential Client Type. Refer to *[../security/client/oidcClientConfig.json](#/security/client/oidcClientConfig.json)*.
## Definitions

- **`responseType`** *(string)*: Response Type. Must be one of: `["id_token", "code"]`. Default: `"id_token"`.


Documentation file automatically generated at 2025-01-15 09:05:41.923720+00:00.
[Docs] - Incremental upgrade docs & bring back versions (#13008) 2023-08-27 10:55:55 +02:00			`---`
			`title: authenticationConfiguration`
			`slug: /main-concepts/metadata-standard/schemas/configuration/authenticationconfiguration`
			`---`

			`# AuthenticationConfiguration`

			`This schema defines the Authentication Configuration.`

			`## Properties`

Feat: update generate docs schema (#19372) * Updated generate_docs_schema * Updated generate_docs_schema * Updated generate_docs_schema * applied generate_docs_schema script * Revert the changes in this file --------- Co-authored-by: Tarun <tarun.p@deuexsolutions.com> Co-authored-by: Prajwal214 <167504578+Prajwal214@users.noreply.github.com> 2025-01-15 17:46:55 +05:30			- `clientType` (string): Client Type. Must be one of: `["public", "confidential"]`. Default: `"public"`.
			- `provider`: Refer to [../entity/services/connections/metadata/openMetadataConnection.json#/definitions/authProvider](#/entity/services/connections/metadata/openMetadataConnection.json#/definitions/authProvider).
			- `responseType`: This is used by auth provider provide response as either id_token or code. Refer to [#/definitions/responseType](#definitions/responseType).
[Docs] - Incremental upgrade docs & bring back versions (#13008) 2023-08-27 10:55:55 +02:00			- `providerName` (string): Custom OIDC Authentication Provider Name.
			- `publicKeyUrls` (array): List of Public Key URLs.
			`- Items (string)`
Feat: update generate docs schema (#19372) * Updated generate_docs_schema * Updated generate_docs_schema * Updated generate_docs_schema * applied generate_docs_schema script * Revert the changes in this file --------- Co-authored-by: Tarun <tarun.p@deuexsolutions.com> Co-authored-by: Prajwal214 <167504578+Prajwal214@users.noreply.github.com> 2025-01-15 17:46:55 +05:30			- `tokenValidationAlgorithm` (string): Token Validation Algorithm to use. Must be one of: `["RS256", "RS384", "RS512"]`. Default: `"RS256"`.
[Docs] - Incremental upgrade docs & bring back versions (#13008) 2023-08-27 10:55:55 +02:00			- `authority` (string): Authentication Authority.
			- `clientId` (string): Client ID.
			- `callbackUrl` (string): Callback URL.
			- `jwtPrincipalClaims` (array): Jwt Principal Claim.
			`- Items (string)`
Feat: update generate docs schema (#19372) * Updated generate_docs_schema * Updated generate_docs_schema * Updated generate_docs_schema * applied generate_docs_schema script * Revert the changes in this file --------- Co-authored-by: Tarun <tarun.p@deuexsolutions.com> Co-authored-by: Prajwal214 <167504578+Prajwal214@users.noreply.github.com> 2025-01-15 17:46:55 +05:30			- `jwtPrincipalClaimsMapping` (array): Jwt Principal Claim Mapping.
			`- Items (string)`
			- `enableSelfSignup` (boolean): Enable Self Sign Up. Default: `false`.
			- `ldapConfiguration`: LDAP Configuration in case the Provider is LDAP. Refer to [./ldapConfiguration.json](#ldapConfiguration.json).
			- `samlConfiguration`: Saml Configuration that is applicable only when the provider is Saml. Refer to [../security/client/samlSSOClientConfig.json](#/security/client/samlSSOClientConfig.json).
			- `oidcConfiguration`: Oidc Configuration for Confidential Client Type. Refer to [../security/client/oidcClientConfig.json](#/security/client/oidcClientConfig.json).
			`## Definitions`

			- `responseType` (string): Response Type. Must be one of: `["id_token", "code"]`. Default: `"id_token"`.
[Docs] - Incremental upgrade docs & bring back versions (#13008) 2023-08-27 10:55:55 +02:00

Feat: update generate docs schema (#19372) * Updated generate_docs_schema * Updated generate_docs_schema * Updated generate_docs_schema * applied generate_docs_schema script * Revert the changes in this file --------- Co-authored-by: Tarun <tarun.p@deuexsolutions.com> Co-authored-by: Prajwal214 <167504578+Prajwal214@users.noreply.github.com> 2025-01-15 17:46:55 +05:30			`Documentation file automatically generated at 2025-01-15 09:05:41.923720+00:00.`