Update an OAuth/OIDC client.
PUT
/api/admin/clients/{id}
Code sample: Shell / cURL
curl --request PUT \ --url https://auth.example.com/api/admin/clients/example \ --header 'Authorization: Bearer <token>' \ --header 'Content-Type: application/json' \ --data '{ "client_name": "example", "description": "example", "redirect_uris": [ "https://example.com" ], "grant_types": [ "authorization_code" ], "response_types": [ "code" ], "scope": "example", "logo_uri": "https://example.com", "client_uri": "https://example.com", "policy_uri": "https://example.com", "tos_uri": "https://example.com", "contacts": [ "example" ], "token_endpoint_auth_method": "none", "subject_type": "public", "sector_identifier_uri": "https://example.com", "is_trusted": true, "skip_consent": true, "allow_claims_without_scope": true, "allowed_redirect_origins": [ "example" ], "web_origin_registry": "example", "require_pkce": true, "application_type": "web", "trust_group": "example", "browser_public_client_mode": "disabled", "browser_refresh_token_policy": "disabled", "native_sso_enabled": true, "native_channel_allowed": true, "allowed_channels": [ "example" ], "token_exchange_allowed": true, "allowed_subject_token_clients": [ "example" ], "allowed_token_exchange_resources": [ "example" ], "delegation_mode": "none", "client_credentials_allowed": true, "allowed_scopes": [ "example" ], "default_scope": "example", "default_audience": "example", "default_resource": "example", "initiate_login_uri": "https://example.com", "login_ui_url": "https://example.com" }'Replace Client in the Clients area. The request body is JSON unless the detailed schema for this operation states otherwise.
Authorizations
Section titled “Authorizations ”Parameters
Section titled “ Parameters ”Path Parameters
Section titled “Path Parameters ” id
required
string
Header Parameters
Section titled “Header Parameters ” X-Tenant-Id
string
Tenant selector for multi-tenant admin requests.
Request Body required
Section titled “Request Body required ” Media type application/json
object
client_name
string
description
string | null
redirect_uris
Array<string>
grant_types
Array<string>
response_types
Array<string>
scope
string
logo_uri
string format: uri
client_uri
string format: uri
policy_uri
string format: uri
tos_uri
string format: uri
contacts
Array<string>
token_endpoint_auth_method
string
subject_type
string
sector_identifier_uri
string format: uri
is_trusted
boolean
skip_consent
boolean
allow_claims_without_scope
boolean
allowed_redirect_origins
Array<string>
web_origin_registry
object | null
require_pkce
boolean
application_type
string
trust_group
string | null
browser_public_client_mode
string | null
browser_refresh_token_policy
string | null
native_sso_enabled
boolean | null
native_channel_allowed
boolean | null
allowed_channels
Array<string> | null
token_exchange_allowed
boolean
allowed_subject_token_clients
Array<string> | null
allowed_token_exchange_resources
Array<string> | null
delegation_mode
string
client_credentials_allowed
boolean
allowed_scopes
Array<string> | null
default_scope
string | null
default_audience
string | null
default_resource
string | null
initiate_login_uri
string format: uri
login_ui_url
string format: uri
Responses
Section titled “ Responses ”OAuth/OIDC client mutation response.
Media type application/json
object
success
required
boolean
client
object
client_name
required
string
description
string | null
redirect_uris
required
Array<string>
grant_types
required
Array<string>
response_types
required
Array<string>
scope
string
logo_uri
string format: uri
client_uri
string format: uri
policy_uri
string format: uri
tos_uri
string format: uri
contacts
Array<string>
token_endpoint_auth_method
string
subject_type
string
sector_identifier_uri
string format: uri
is_trusted
boolean
skip_consent
boolean
allow_claims_without_scope
boolean
allowed_redirect_origins
Array<string>
web_origin_registry
object | null
require_pkce
boolean
application_type
string
trust_group
string | null
browser_public_client_mode
string | null
browser_refresh_token_policy
string | null
native_sso_enabled
boolean | null
native_channel_allowed
boolean | null
allowed_channels
Array<string> | null
token_exchange_allowed
boolean
allowed_subject_token_clients
Array<string> | null
allowed_token_exchange_resources
Array<string> | null
delegation_mode
string
client_credentials_allowed
boolean
allowed_scopes
Array<string> | null
default_scope
string | null
default_audience
string | null
default_resource
string | null
client_id
required
string
client_secret
Returned only on secret-issuing operations such as client creation or regeneration.
string
tenant_id
string
Example
{ "client": { "grant_types": [ "authorization_code" ], "response_types": [ "code" ], "token_endpoint_auth_method": "none", "subject_type": "public", "application_type": "web", "browser_public_client_mode": "disabled", "browser_refresh_token_policy": "disabled", "delegation_mode": "none" }}Error response.
Media type application/json
object
error
string
message
string
error_description
string
key
additional properties
Example generated
{ "error": "example", "message": "example", "error_description": "example"}