---
title: oidcClientConfig
slug: /main-concepts/metadata-standard/schemas/security/client/oidcclientconfig
---

# OidcClientConfig

*Oidc client security configs.*

## Properties

- **`type`** *(string)*: IDP type (Example Google,Azure).
- **`id`** *(string)*: Client ID.
- **`secret`** *(string)*: Client Secret.
- **`scope`** *(string)*: Oidc Request Scopes. Default: `openid email profile`.
- **`discoveryUri`** *(string)*: Discovery Uri for the Client.
- **`useNonce`** *(string)*: Use Nonce. Default: `True`.
- **`preferredJwsAlgorithm`** *(string)*: Preferred Jws Algorithm. Default: `RS256`.
- **`responseType`** *(string)*: Auth0 Client Secret Key. Default: `code`.
- **`disablePkce`** *(boolean)*: Disable PKCE. Default: `True`.
- **`maxClockSkew`** *(string)*: Max Clock Skew.
- **`clientAuthenticationMethod`** *(string)*: Client Authentication Method. Must be one of: `['client_secret_basic', 'client_secret_post', 'client_secret_jwt', 'private_key_jwt']`.
- **`tokenValidity`** *(integer)*: Validity for the JWT Token created from SAML Response. Default: `3600`.
- **`customParams`** *(object)*: Custom Params.
- **`tenant`** *(string)*: Tenant in case of Azure.
- **`serverUrl`** *(string)*: Server Url.
- **`callbackUrl`** *(string)*: Callback Url.
- **`maxAge`** *(string)*: Validity for the JWT Token created from SAML Response.
- **`prompt`** *(string)*: Prompt whether login/consent.
- **`sessionExpiry`** *(integer)*: Validity for the Session in case of confidential clients. Default: `604800`.


Documentation file automatically generated at 2025-08-12 05:39:47.683420+00:00.