Custom OIDC - Char

Use any OpenID Connect provider that issues standards-compliant ID tokens.

Requirements

Valid issuer URL
Discovery/JWKS endpoint
Audience values configured in Char

Integration pattern

const idToken = await getIdTokenFromYourProvider();

agent.connect({
  publishableKey: "pk_live_...",
  idToken,
});

Validation checks

Char validates:

Signature via JWKS
Issuer match
Audience match
Expiration

Identity Providers Overview

Char SaaS MCPUse the Char SaaS MCP to configure your organization, set up identity providers, and access browser tools from Claude Code

Requirements
Integration pattern
Validation checks