Client identifier.

Client secret.

Client authentication method for the client's authenticated requests. Default is client_secret_basic.

JWS alg algorithm required for signing the ID Token issued to this Client. When not configured the default is to allow only algorithms listed in AuthorizationServer.id_token_signing_alg_values_supported | as.id_token_signing_alg_values_supported and fall back to RS256 when the authorization server metadata is not set.

JWS alg algorithm required for signing authorization responses. When not configured the default is to allow only supported algorithms listed in AuthorizationServer.authorization_signing_alg_values_supported | as.authorization_signing_alg_values_supported and fall back to RS256 when the authorization server metadata is not set.

Boolean value specifying whether the IDToken.auth_time | auth_time Claim in the ID Token is REQUIRED. Default is false.

JWS alg algorithm REQUIRED for signing UserInfo Responses. When not configured the default is to allow only algorithms listed in AuthorizationServer.userinfo_signing_alg_values_supported | as.userinfo_signing_alg_values_supported and fall back to RS256 when the authorization server metadata is not set.

JWS alg algorithm REQUIRED for signed introspection responses. When not configured the default is to allow only algorithms listed in AuthorizationServer.introspection_signing_alg_values_supported | as.introspection_signing_alg_values_supported and fall back to RS256 when the authorization server metadata is not set.

Default Maximum Authentication Age.

Indicates the requirement for a client to use mutual TLS endpoint aliases defined by the AS where present. Default is false.

When combined with customFetch (to use a Fetch API implementation that supports client certificates) this can be used to target FAPI 2.0 profiles that utilize Mutual-TLS for either client authentication or sender constraining. FAPI 1.0 Advanced profiles that use PAR and JARM can also be targetted.

See clockSkew.

See clockTolerance.

See jweDecrypt.