Optionalacr_Requested Authentication Context Class Reference values.
OptionalaudienceAudience for which the client is requesting access.
OptionalclaimsClaims parameter requesting specific user attributes.
Optionalclaims_Preferred languages for user claims.
Optionalclient_OAuth2 client identifier.
Optionalcode_PKCE code challenge.
Optionalcode_PKCE code challenge method (typically "S256").
Optionalcode_PKCE verifier used for exchanging authorization code.
OptionaldisplayDisplay type: page, popup, etc.
OptionalextraAdditional parameters appended to the authorization request.
OptionalfragmentOptional URI fragment used by web_message or custom response handling.
Optionalid_Id token hint for reauthentication scenarios.
Optionallogin_Optional login hint such as email or username.
OptionalnonceGenerated nonce for replay protection.
OptionalpromptPrompt behavior: none, login, consent, etc.
Optionalredirect_Redirect URI registered for the client.
OptionalregistrationClient registration parameter (rarely used).
Optionalrequest_Internal request type:
"s" → silent"p" → popup"d" → standard redirectOptionalresponse_OAuth2/OIDC response mode such as fragment, query, form_post.
Optionalresponse_OAuth2/OIDC response type such as code, token, id_token.
OptionalscopeRequested scopes.
OptionalstateClient-generated state value used for request correlation.
Optionalui_Preferred UI locales for login experience.
Optionalweb_Web Message response target (used in popup/iframe login).
Optionalweb_Web Message receiver URL.
Options used when creating an authorization request. Most fields map directly to OpenID Connect or OAuth2 parameters.
See
https://openid.net/specs/openid-connect-core-1_0.html#AuthRequest