GetOidcInfo
Retrieves the OpenID Connect (OIDC) configuration for a Wickr network, including SSO settings and optional token information if access token parameters are provided.
Request Syntax
GET /networks/networkId/oidc?certificate=certificate&clientId=clientId&clientSecret=clientSecret&code=code&codeVerifier=codeVerifier&grantType=grantType&redirectUri=redirectUri&url=url HTTP/1.1
URI Request Parameters
The request uses the following URI parameters.
- certificate
-
The CA certificate for secure communication with the OIDC provider (optional).
Pattern:
[\S\s]* - clientId
-
The OAuth client ID for retrieving access tokens (optional).
Pattern:
[\S\s]* - clientSecret
-
The OAuth client secret for retrieving access tokens (optional).
Pattern:
[\S\s]* - code
-
The authorization code for retrieving access tokens (optional).
Pattern:
[\S\s]* - codeVerifier
-
The PKCE code verifier for enhanced security in the OAuth flow (optional).
Pattern:
[\S\s]* - grantType
-
The OAuth grant type for retrieving access tokens (optional).
Pattern:
[\S\s]* - networkId
-
The ID of the Wickr network whose OIDC configuration will be retrieved.
Length Constraints: Fixed length of 8.
Pattern:
[0-9]{8}Required: Yes
- redirectUri
-
The redirect URI for the OAuth flow (optional).
Pattern:
[\S\s]* - url
-
The URL for the OIDC provider (optional).
Pattern:
[\S\s]*
Request Body
The request does not have a request body.
Response Syntax
HTTP/1.1 200
Content-type: application/json
{
"openidConnectInfo": {
"applicationId": number,
"applicationName": "string",
"caCertificate": "string",
"clientId": "string",
"clientSecret": "string",
"companyId": "string",
"customUsername": "string",
"extraAuthParams": "string",
"issuer": "string",
"redirectUrl": "string",
"scopes": "string",
"secret": "string",
"ssoTokenBufferMinutes": number,
"userId": "string"
},
"tokenInfo": {
"accessToken": "string",
"codeChallenge": "string",
"codeVerifier": "string",
"expiresIn": number,
"idToken": "string",
"refreshToken": "string",
"tokenType": "string"
}
}Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
- openidConnectInfo
-
The OpenID Connect configuration information for the network, including issuer, client ID, scopes, and other SSO settings.
Type: OidcConfigInfo object
- tokenInfo
-
OAuth token information including access token, refresh token, and expiration details (only present if token parameters were provided in the request).
Type: OidcTokenInfo object
Errors
For information about the errors that are common to all actions, see Common Errors.
- BadRequestError
-
The request was invalid or malformed. This error occurs when the request parameters do not meet the API requirements, such as invalid field values, missing required parameters, or improperly formatted data.
- message
-
A detailed message explaining what was wrong with the request and how to correct it.
HTTP Status Code: 400
- ForbiddenError
-
Access to the requested resource is forbidden. This error occurs when the authenticated user does not have the necessary permissions to perform the requested operation, even though they are authenticated.
- message
-
A message explaining why access was denied and what permissions are required.
HTTP Status Code: 403
- InternalServerError
-
An unexpected error occurred on the server while processing the request. This indicates a problem with the Wickr service itself rather than with the request. If this error persists, contact AWS Support.
- message
-
A message describing the internal server error that occurred.
HTTP Status Code: 500
- RateLimitError
-
The request was throttled because too many requests were sent in a short period of time. Wait a moment and retry the request. Consider implementing exponential backoff in your application.
- message
-
A message indicating that the rate limit was exceeded and suggesting when to retry.
HTTP Status Code: 429
- ResourceNotFoundError
-
The requested resource could not be found. This error occurs when you try to access or modify a network, user, bot, security group, or other resource that doesn't exist or has been deleted.
- message
-
A message identifying which resource was not found.
HTTP Status Code: 404
- UnauthorizedError
-
The request was not authenticated or the authentication credentials were invalid. This error occurs when the request lacks valid authentication credentials or the credentials have expired.
- message
-
A message explaining why the authentication failed.
HTTP Status Code: 401
- ValidationError
-
One or more fields in the request failed validation. This error provides detailed information about which fields were invalid and why, allowing you to correct the request and retry.
- reasons
-
A list of validation error details, where each item identifies a specific field that failed validation and explains the reason for the failure.
HTTP Status Code: 422
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
