Skip to main content

Patch OAuth Client

PATCH 

/oauth-clients/:id

This performs a targeted update to the field(s) of an OAuth client. Request will require a security scope of

  • sp:oauth-client:manage

Request

Path Parameters

    id stringrequired

    The OAuth client id

    Example: ef38f94347e94562b5bb8424a56397d8

Body

array

required

A list of OAuth client update operations according to the JSON Patch standard.

The following fields are patchable:

  • tenant

  • businessName

  • homepageUrl

  • name

  • description

  • accessTokenValiditySeconds

  • refreshTokenValiditySeconds

  • redirectUris

  • grantTypes

  • accessType

  • enabled

  • strongAuthSupported

  • claimsSupported

  • Array [

  • op stringrequired

    Possible values: [add, remove, replace, move, copy, test]

    The operation to be performed

    path stringrequired

    A string JSON Pointer representing the target path to an element to be affected by the operation

    value

    object

    The value to be used for the operation, required for "add" and "replace" operations

    oneOf

    string

  • ]

Responses

Indicates the PATCH operation succeeded, and returns the OAuth client's new representation.

Schema

    id stringrequired

    ID of the OAuth client

    businessName stringnullablerequired

    The name of the business the API Client should belong to

    homepageUrl stringnullablerequired

    The homepage URL associated with the owner of the API Client

    name stringrequired

    A human-readable name for the API Client

    description stringnullablerequired

    A description of the API Client

    accessTokenValiditySeconds int32required

    The number of seconds an access token generated for this API Client is valid for

    refreshTokenValiditySeconds int32required

    The number of seconds a refresh token generated for this API Client is valid for

    redirectUris string[]nullablerequired

    A list of the approved redirect URIs used with the authorization_code flow

    grantTypes GrantType (string)[]required

    Possible values: [CLIENT_CREDENTIALS, AUTHORIZATION_CODE, REFRESH_TOKEN]

    A list of OAuth 2.0 grant types this API Client can be used with

    accessType AccessType (string)required

    Possible values: [ONLINE, OFFLINE]

    The access type (online or offline) of this API Client

    type ClientType (string)required

    Possible values: [CONFIDENTIAL, PUBLIC]

    The type of the API Client (public or confidential)

    internal booleanrequired

    An indicator of whether the API Client can be used for requests internal to IDN

    enabled booleanrequired

    An indicator of whether the API Client is enabled for use

    strongAuthSupported booleanrequired

    An indicator of whether the API Client supports strong authentication

    claimsSupported booleanrequired

    An indicator of whether the API Client supports the serialization of SAML claims when used with the authorization_code flow

    created date-timerequired

    The date and time, down to the millisecond, when the API Client was created

    modified date-timerequired

    The date and time, down to the millisecond, when the API Client was last updated

    secret stringnullable
    metadata stringnullable
    lastUsed date-timenullable

    The date and time, down to the millisecond, when this API Client was last used to generate an access token. This timestamp does not get updated on every API Client usage, but only once a day. This property can be useful for identifying which API Clients are no longer actively used and can be removed.

    scope string[]nullablerequired

    Scopes of the API Client.

Loading...