OpenID Connect Flow

Use the Authorization Code flow with PKCE, and paste the entire response from the token endpoint in the box to check your work. (Note, only do this for accounts you've created specifically for this course, never paste access tokens from production systems in random websites!)

Authorization Request

Create the initial URL for the authorization request and paste it above. Once it's correct, a "Log In" button with that URL will appear below

Token Response

Use the authorization code flow to get an ID token, then paste the entire token response JSON here to check your work

ID Token Claims

The ID token returned from the token endpoint is below.

Parse the claims from the JWT using a Base64 decoder and paste the user's subject, name and email address into the form below. Remember that because you got this ID token over the back channel, you don't need to worry about verifying the JWT signature.