The specifics to connect an OpenID Connect application to SRAM are:
- The auto-discovery config at https://proxy.sram.surf.nl/.well-known/openid-configuration
- For the acceptance environment the discovery is at https://proxy.acc.sram.eduteams.org/.well-known/openid-configuration
- The available attributes in SRAM
- Documentation on the IP addresses where your application must connect to
- The appropriate OIDC-scopes will need to be specified in the application for it to receive the associated attributes. If no custom scopes are specified, the application will receive a very minimal set of attributes. To get all attributes, please specify the following scopes:
openid
profile
email
eduperson_assurance
eduperson_entitlement
eduperson_orcid
eduperson_principal_name
eduperson_scoped_affiliation
voperson_external_affiliation
voperson_external_id
voperson_id
aarc
ssh_public_key
orcid
uid
Please also refer to Supported OpenID Connect / OAuth grant types.