OpenID Connect

Authorization Code + PKCE — demo

1. Start server: node demos/node/server.js
2. Open http://localhost:3000/oidc/client
3. Login with any email + password (demo), consent, and finish the flow.

Discovery

curl http://localhost:3000/.well-known/openid-configuration

Validate the ID Token

The demo signs ID Tokens with HS256. In production prefer RS256/ES256 with JWKS.