From 152b667f3a7b832771f9054b5678e067a124858d Mon Sep 17 00:00:00 2001 From: Luca Nardi Date: Tue, 21 Mar 2023 17:52:50 +0100 Subject: [PATCH] Change url for opensearch_security.openid.scope configuration setting (#2944) Signed-off-by: Luca Nardi --- _security/authentication-backends/openid-connect.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/_security/authentication-backends/openid-connect.md b/_security/authentication-backends/openid-connect.md index 2d9058d98d..fcc8c417b2 100755 --- a/_security/authentication-backends/openid-connect.md +++ b/_security/authentication-backends/openid-connect.md @@ -277,7 +277,7 @@ Name | Description `opensearch_security.openid.connect_url` | The URL where the IdP publishes the OpenID metadata. Required. `opensearch_security.openid.client_id` | The ID of the OpenID Connect client configured in your IdP. Required. `opensearch_security.openid.client_secret` | The client secret of the OpenID Connect client configured in your IdP. Required. -`opensearch_security.openid.scope` | The [scope of the identity token](https://auth0.com/docs/scopes/current) issued by the IdP. Optional. Default is `openid profile email address phone`. +`opensearch_security.openid.scope` | The [scope of the identity token](https://openid.net/specs/openid-connect-messages-1_0-20.html#scopes) issued by the IdP. Optional. Default is `openid profile email address phone`. `opensearch_security.openid.header` | HTTP header name of the JWT token. Optional. Default is `Authorization`. `opensearch_security.openid.logout_url` | The logout URL of your IdP. Optional. Only necessary if your IdP does not publish the logout URL in its metadata. `opensearch_security.openid.base_redirect_url` | The base of the redirect URL that will be sent to your IdP. Optional. Only necessary when OpenSearch Dashboards is behind a reverse proxy, in which case it should be different than `server.host` and `server.port` in `opensearch_dashboards.yml`.