Files
FreshRSS/docs
Gerard Alvear Porras e95243ae68 Document OIDC token endpoint authentication method (#9027)
Explain that mod_auth_openidc defaults to client_secret_basic since
our reference Apache configuration does not set
OIDCProviderTokenEndpointAuth. If the identity provider's discovery
metadata advertises a token_endpoint_auth_methods_supported array
instead, mod_auth_openidc picks the first mutually supported method
from that array rather than falling back to client_secret_basic.
Also point to the .htaccess override for administrators who need
something else.

This only addresses the token-endpoint-auth-method part of #6102;
the redirect-URI-port question raised in that issue is out of scope
here.

Addresses the token-endpoint-auth-method part of #6102

Co-authored-by: Gerard Alvear <gerard.alvear@logiqd.me>
2026-07-11 17:35:01 +02:00
..
2020-10-03 13:42:18 +02:00
2025-12-11 19:30:06 +01:00
2024-05-15 08:58:10 +02:00

This is the documentation deployed by GitHub Pages.

To build and serve locally, first install the necessary packages:

bundle install

Then serve:

bundle exec jekyll serve -H 127.0.0.1 --watch --incremental

The documentation should be reachable at http://127.0.0.1:4000/FreshRSS/.