2.2.2.6 nonce
-
GET /authorize?response_type={response_type}&client_id={client_id}&state={state}&resource={resource}&client-request-id={ClientRequestId}&redirect_uri={redirect_uri}&nonce={nonce} HTTP/1.1
OPTIONAL
The nonce query parameter is OPTIONAL, and can be specified by the client role of the OAuth 2.0 Protocol Extensions. This parameter has the same behavior as the nonce parameter defined in [OIDCCore] section 3.1.2.1, but can be specified regardless of whether the client role also requests the "openid" scope.
The AD FS server ignores this parameter unless its ad_fs_behavior_level is AD_FS_BEHAVIOR_LEVEL_2 or higher.
For an example of the nonce query parameter being used, see section 4.9.
The format for the nonce query parameter is as follows.
-
String = *(%x20-7E) nonce = String