OIDC SSO Integration Specs
Enterprise Directory Synchronization & Authorization
01 / WMTAN Federation
WMTAN Identity Portal supports native OIDC (OpenID Connect) for unified access across all internal operations and VIP sub-domains. By maintaining a centralized identity provider, we enforce strict compliance and minimal attack surfaces.
AUTHORIZATION_ENDPOINT:https://id.wmtan.com/api/oauth/authorize
02 / JWT Claims & Verification
All authorized tokens are structurally formatted as JWTs signed by our RSA-256 private core system keys. Partnering applications must strictly validate tokens against our public JWKS endpoint to prevent replay attacks and impersonation attempts.