Curity OpenID Connect Provider
Curity Identity Server is a standards-based OAuth 2.0 and OpenID Connect platform built for financial-grade API security, large-scale CIAM, and AI agent identity, with extensive FAPI certification.
Features
If you want to compare OpenID Connect features of different providers, please check out the OpenID Connect Providers benchmark.
Looking for Curity’s (C)IAM features like MFA, SSO, and user management? View Curity on the (C)IAM Identity Providers benchmark.
Frequently Asked Questions
Does Curity support the Authorization Code grant type?
Curity supports Authorization Code grant type. Read more
Does Curity support the Refresh Token grant type?
Curity supports Refresh Token grant type. Read more
Does Curity support the Client Credentials grant type?
Curity supports Client Credentials grant type. Read more
Does Curity support the Implicit grant type?
Curity supports Implicit grant type. Read more
Does Curity support the Token Exchange grant type?
Curity supports Token Exchange grant type. Read more
Does Curity support the Client Initiated BackChannel Authentication grant type?
Curity supports Client Initiated BackChannel Authentication grant type. Read more
Does Curity support the Device Authorization Grant grant type?
Curity supports Device Authorization Grant grant type. Read more
Does Curity support the SAML 2.0 Bearer Assertion grant type?
Curity does not support SAML 2.0 Bearer Assertion grant type.
Does Curity support the Resource Owner Password Credentials grant type?
Curity supports Resource Owner Password Credentials grant type. Read more
Does Curity support the PKCE extension?
Curity supports PKCE extension. Read more
Does Curity support the PAR extension?
Curity supports PAR extension. Read more
Does Curity support the RAR extension?
Curity partially supports RAR extension. RAR (RFC 9396) support is limited to the openid_credential type for verifiable credential issuance. General-purpose RAR is not supported. Read more
Does Curity support the JAR extension?
Curity supports JAR extension. Read more
Does Curity support the Authorization Endpoint endpoint?
Curity supports Authorization Endpoint endpoint. Read more
Does Curity support the Token Endpoint endpoint?
Curity supports Token Endpoint endpoint. Read more
Does Curity support the UserInfo Endpoint endpoint?
Curity supports UserInfo Endpoint endpoint. Read more
Does Curity support the Token Revocation endpoint?
Curity supports Token Revocation endpoint. Read more
Does Curity support the Token Introspection endpoint?
Curity supports Token Introspection endpoint. Read more
Does Curity support the Device Authorization Endpoint endpoint?
Curity supports Device Authorization Endpoint endpoint. Read more
Does Curity support the OpenID Connect Discovery Endpoint endpoint?
Curity supports OpenID Connect Discovery Endpoint endpoint. Read more
Does Curity support the OAuth 2.0 Authorization Server Metadata Endpoint endpoint?
Curity supports OAuth 2.0 Authorization Server Metadata Endpoint endpoint. Read more
Does Curity support the none token endpoint authentication method?
Curity supports none token endpoint authentication method. Read more
Does Curity support the client_secret_basic token endpoint authentication method?
Curity supports client_secret_basic token endpoint authentication method. Read more
Does Curity support the client_secret_post token endpoint authentication method?
Curity supports client_secret_post token endpoint authentication method. Read more
Does Curity support the client_secret_jwt token endpoint authentication method?
Curity supports client_secret_jwt token endpoint authentication method. Read more
Does Curity support the private_key_jwt token endpoint authentication method?
Curity supports private_key_jwt token endpoint authentication method. Read more
Does Curity support the tls_client_auth token endpoint authentication method?
Curity supports tls_client_auth token endpoint authentication method. Mutual TLS (mTLS) client authentication and certificate-bound tokens. Read more
Does Curity support the none prompt?
Curity supports none prompt. Read more
Does Curity support the login prompt?
Curity supports login prompt. Read more
Does Curity support the consent prompt?
Curity supports consent prompt. Read more
Does Curity support the select_account prompt?
Curity does not support select_account prompt.
Does Curity support the create prompt?
Curity does not support create prompt.
Does Curity support the RP-initiated Logout feature?
Curity supports RP-initiated Logout feature. Read more
Does Curity support the Dynamic Client Registration Protocol feature?
Curity supports Dynamic Client Registration Protocol feature. Read more
Does Curity support the Dynamic Client Registration Management Protocol feature?
Curity supports Dynamic Client Registration Management Protocol feature. Read more
Does Curity support the Refresh Token Rotation feature?
Curity supports Refresh Token Rotation feature. Read more
Does Curity support the OAuth 2.0 Demonstrating Proof of Possession (DPoP) feature?
Curity supports OAuth 2.0 Demonstrating Proof of Possession (DPoP) feature. Read more
Does Curity support the FAPI 1.0 Security Profile - Part 1: Baseline feature?
Curity supports FAPI 1.0 Security Profile - Part 1: Baseline feature. Read more
Does Curity support the FAPI 1.0 Security Profile - Part 2: Advanced feature?
Curity supports FAPI 1.0 Security Profile - Part 2: Advanced feature. Read more
Does Curity support the FAPI 2.0 Security Profile feature?
Curity supports FAPI 2.0 Security Profile feature. Read more
Does Curity support the FAPI 2.0 Message Signing feature?
Curity partially supports FAPI 2.0 Message Signing feature. FAPI 2.0 Message Signing profile support is in progress; JARM is implemented but full message signing certification is pending. Read more
Does Curity support the JARM feature?
Curity supports JARM feature. Read more
Note: The current data is based on provider documentation/experience and may not be 100% accurate. Please open an issue if you have spotted any inconsistencies.