General Options
General Options
| Option | Description | Remark |
|---|---|---|
| Client Name | User friendly client name | |
| Client Description | User friendly client description | |
| Client ID | Client id generated by system | |
| Client Secret | Client secret generated by system | Private client types only |
| Application Type | Application type for this client | |
| First Party | First party client can skip the consent screen during authorization | |
| Grant Types | Allowed grant type depending on application type | |
| Response Types | Allowed OpenID Connect response type | |
| Authentication Method | Depends on application type and client type | |
| Offline Access | Is client allowed to request refresh token (depending on grant types) | |
| Standard claims | List of OpenID user attribute claims to be added when issuing id token, only if scope was not provided |
Allowed Grant Types
| Application Types | Grant Types |
|---|---|
| Single Page Applications | implicit, authorization_code_pkce, authorization_code |
| Native Applications | password, authorization_code_pkce, refresh_token, implicit |
| Server-side Web Application | refresh_token, password, client_credentials, authorization_code, authorization_code_pkce, implicit |
| Service Account Application | client_credentials, refresh_token |
| Device Application | urn:ietf:params:oauth:grant-type:device_code, refresh_token |
Recommended Response Types
| Application Types | Response Types |
|---|---|
| Single Page Applications | code, id_token token |
| Native Applications | code |
| Server-side Web Application | code |
| Service Account Application | none |
| Device Application | none |
Allowed Authentication Method
| Application Types | Authentication Methods | Has Client Secret |
|---|---|---|
| Single Page Applications | none | No |
| Native Applications | none | No |
| Server-side Web Application | client_secret_basic, client_secret_post, client_secret_jwt, client_secret_jwt, private_key_jwt, tls_client_auth, self_signed_tls_client_auth | Yes |
| Service Account Application | client_secret_basic, client_secret_post, client_secret_jwt, client_secret_jwt, private_key_jwt, tls_client_auth, self_signed_tls_client_auth | Yes |
| Device Application | none | No |
General Options
Navigate to Clients and then find the client you want to configure. Click edit. Under General panel, edit configuration and click Update Details.
