We are implementing OIDC for Identity Governance (IG) as relying party and IBM WebSEAL as Identity Provider (IDP).

While testing the IDP Discovery URL in IG interface, we came across the following error:

• Unable to fetch the Provider Metadata. Error: Missing JSON object member with key "subject_types_supported"

We checked with the IDP team, they mentioned they need to modify IDP metadata to include the missing field “subject_types_supported”. This field is by default not included and they don’t provide open access. They are asking us what values are supported by our products like subject_types_supported":["pairwise"], that need to be included in the field.

Could you please provide the requested info?

  The identity provider (IDP) metadata must include the element "subject_types_supported" with "public" as the value.