OAuth configuration update - include PKCE support flags
Hello,
I'm working on a project that involves OAuth integration with several different providers, including Microsoft. Some of the providers that I need to integrate with support the PKCE flow, and others do not. I am trying to use the standard OAuth configuration file at https://login.microsoftonline.com/common/v2.0/.well-known/openid-configuration to determine which providers support PKCE. However, Microsoft's configuration file does not include the correct data to indicate that it supports PKCE.
Could this file: https://login.microsoftonline.com/common/v2.0/.well-known/openid-configuration be updated to include the following?
"code_challenge_methods_supported": [
"plain",
"S256"
],
Thank you!