OIDC Demo App
Config Sign In

Demo environment

OIDC single sign-on showcase

This page demonstrates the Authorization Code + PKCE flow end-to-end. Sign in to inspect the decoded profile and token payloads returned by your identity provider.

Authentication

Unauthenticated

ID token

Not stored

Refresh token

Not requested

You are not signed in

Use the button in the navigation bar to initiate the OIDC sign-in flow.

  1. We redirect you to the identity provider for authentication.
  2. Upon success, the provider posts an authorization code back to /callback.
  3. The demo exchanges the code for tokens, calls userinfo, and stores the data in the session.

OIDC flow timeline

Start the sign-in flow to see each request and response captured here.