PHP Federated RP

Configuration Overview

Entity Configuration: /.well-known/openid-federation | (JSON)

Other options (that are not visible in Entity Configuration):

• Trust Anchors:

  array (
    0 => 'https://oidfed-ta-demo.incubator.geant.org',
    1 => 'https://ta.tiime2026.aai.garr.it',
  )

• Entity Statement Duration:

  '00mon 01day 00hou 00min 00sec'

• Max Cache Duration:

  '00mon 00day 06hou 00min 00sec'

• Timestamp Validation Leeway:

  '00mon 00day 00hou 01min 00sec'

• Max Trust Chain Depth:

  9

• Default Trust Mark Status Endpoint Usage Policy:

  'RequiredIfEndpointProvidedForNonExpiringTrustMarksOnly'

• Include Software ID:

  true                

• Private Key JWT Duration:

  '00mon 00day 00hou 05min 00sec'

• Use State (hardcoded, non-configurable):

  true

• Use Nonce?

  true

• Use PKCE?

  true

• PKCE Code Challenge Method:

  'S256'

• Fetch Userinfo Claims?

  true

Authentication