authentik icon indicating copy to clipboard operation
authentik copied to clipboard
verified publisher icon goauthentik

Support OIDC Dynamic Client Registration spec

Open Ramblurr opened this issue 1 year ago • 3 comments

Is your feature request related to a problem? Please describe.

We want to run multiple Owncloud Infinite Scale instances that use Authentik as the IDP. The Owncloud client applications for desktop, mobile and web can be used in two ways:

  1. With hardcoded client id and client secrets - if you go this route you can only support a single Owncloud Infinite Scale tenant per authentik instance because a oauth2 provider's client id must be unique and there is a 1-1 relation between oauth2 provider and application.

  2. Or they support the OIDC Dynamic Client Registration spec - where they use the registration_endpoint to register themselves.

Describe the solution you'd like

Please implement support for the OIDC Dynamic Client Registration spec: https://openid.net/specs/openid-connect-registration-1_0.html

Describe alternatives you've considered

n/a

Additional context

n/a

Ramblurr avatar Feb 29 '24 15:02 Ramblurr

This is needed today more than ever. MCP servers connected to Claude Web have some requirements. One of them is supporting Dynamic Client Registration in the authorization server.

Is there any update on this? :)

achetronic avatar Aug 18 '25 22:08 achetronic

I second this. For instance, DELL OpenManage can only use the dynamic registration. We need this!!

Profecy avatar Nov 24 '25 08:11 Profecy

We don't currently have a system in place in authentik for handling registration requests and configure the permissions needed for it, as well as authorization and how things are approved.

We're planning to look into this again once we have a system for such things in place.

BeryJu avatar Dec 04 '25 17:12 BeryJu