mirror of
https://github.com/rancher/rancher-docs.git
synced 2026-05-06 21:23:36 +00:00
Lucas Saintarbor
4c23b0dd50
* Add shared fle for OIDC Support for PKCE Extension * Update OIDC pages * Update shared-files/_oidc-pkce-support.md Co-authored-by: Billy Tat <btat@suse.com> * Reword OIDC PKCE support text --------- Co-authored-by: Billy Tat <btat@suse.com>
544 B
544 B
Rancher supports the Proof Key for Code Exchange (PKCE) extension (RFC 7636) for OIDC authentication providers. SHA-256 (S256) is the only supported PKCE verification method. To enable this feature, your authentication provider must use PKCE with S256 for authorization requests.
You can enable this feature by selecting Enable PKCE (S256) in your authentication provider configuration in Rancher. Enabling S256 PKCE token verification allows you to mitigate authorization code interception attacks during OIDC authentication flows.