When the open-id server generates id-tokens and has both "/.well-known/openid-configuration" "/.well-known/jwks.json" (jwks_uri) setup correctly the client-secret isn't used for anything.
Why is it a required property?
When the open-id server generates id-tokens and has both "/.well-known/openid-configuration" "/.well-known/jwks.json" (jwks_uri) setup correctly the client-secret isn't used for anything.
Why is it a required property?
Do you mean the ClientSecret field in the API Create OpenId Connection? When you create the Open Id in the GameManager, this API will be called too. The ClientSecret here is the client secret given by the ID provider. It is not prescribed by PlayFab, but is part of the OpenID Connect protocol. You can search for corresponding questions about ClientSecret through the search engine yourself.
Yes. I mean that field. I know what the field is supposed to do. However what I mean is that it's not used for all different types of flows.
But sure, I can just fill in "unused" as it's not required for the flow I'm implementing.
Thanks for clarifying and sharing your workaround, it looks like a required field in the "configuration", but not have to be a meaningful one. Glad it has no real effect on the workflow you are implementing.
2 People are following this question.