services.kanidm.provision.systems.oauth2.<name>.allowInsecureClientDisablePkce

Disable PKCE on this oauth2 resource server to work around insecure clients that may not support it. You should request the client to enable PKCE! Only for non-public clients.

Type

boolean

Default

false

Declared

<nixpkgs/nixos/modules/services/security/kanidm.nix>