Creating an Issuer
Run the post /v1/cckm/oci/issuers
API to create an issuer (third-party IDP). The issuer validates authentication JWT created for health check, encrypt, and decrypt APIs. When creating the issuer, you must specify a unique name that has one of the following combinations:
issuer
andjwks_uri
openid_config_url
: Will be used to auto-fetch theissuer
andjwks_uri
. This is the recommended option.
Note
While creating an issuer, make sure to provide the exact CipherTrust Manager application's credentials (issuer
and jwks_uri
, or openid_config_url
), as received from Oracle; otherwise, external APIs might not work as expected.
Syntax
Request Parameters
Parameter | Type | Description |
---|---|---|
AUTHTOKEN | string | Authentication token. |
name | string | Unique name of the issuer. |
jwks_uri_protected | boolean | Specifies whether jwks URI is protected. Set to true for a protected, false for an unprotected jwks URI.If set to true , you need to add the CTMClientId , CTMClientSecret , and openid_config_url parameters. If set to false , you need to add the name and openid_config_url parameters. |
client_id | string | Client ID of the CipherTrust Manager application as registered on third-party IDP. |
client_secret | string | Client secret of the CipherTrust Manager application as registered on third-party IDP. |
issuer | string | Issuer string (URL) from the identity provider, for example, https://abc.auth0.com/. |
jwks_uri | string | URI of JWKS, for example, https://abc.auth0.com/.well-known/jwks.json. |
openid_config_url | string | OpendID configuration URL for the issuer. |
Example Request
Example Response
Response Codes
Response Code | Description |
---|---|
2xx | Success |
4xx | Client errors |
5xx | Server errors |
Refer to HTTP status codes for details.