External-client (Section)#

Path: /profiles/profile{id, type}/settings/apps-service/applications/application{id}/token-handler/external-client

Parameters#

Name	Type	Required	Default	Description
client-id	`non-empty-string`	required		Client ID that is used to make the authorization request.
client-secret	`non-empty-string`	required		The client secret that is used to make the authorization request.
scope	`multi-value`, `string`	optional		The scopes to ask for in an authorization request.
authorization-endpoint	`uri`	required		The URL of the authorization endpoint.
token-endpoint	`uri`	required		The URL of the token endpoint.
use-pkce	`boolean`	optional	`true`	Use PKCE when making an authorization request. Enabled by default.
token-issuer	`uri`	optional		The issuer of the authorization server that issues the tokens. This will be used for ID token validation to check the `iss` claim, and for authorization response validation - to check the `iss` parameter. If this is not set then no such validation will be done.
redirect-uri	`uri`	required		The redirect URL to be used in authorization requests.

Name	Type	Description
logout	Section	Enables RP-initiated logout from the authorization server.