Sign Up Sign In
Index Documentation Download Check license
OAuth2 dynamic registration
0) Enable the ability to dynamically register client applications using the OAuth2 standard in the admin panel
1) Get an access token or OpenId token. Sample - WeOG6wjPzrzAZpYAXwtvQypOYOdp598TqKZWInhMYdGcjy1NoxksnsW42Ptok9oeGCa9TQaLm4QcoCCK0qAXahbU4rdf6BySLpE1j6B7HEiqoB17g8MhWsUQaX5uE1SPhJIr9MWMDkR2QQ4IZYwdXBq1dj1KEcEHDfw3121guyOR0Nu7CIUrbYKRPDMl9zdD60BuWX083tXy4Q9OzS4WS2hLoyXwpBK94bFxWaq27y5OKPOnnG3OotlYJUGisCX
2) Create JSON with parameters: client_name — client name client_uri — client home page logo_base64 — customer logo value in BASE64 format redirect_uris — array of uri to redirect code or authorization token Sample - { "client_name": "My Example Client", "client_uri": "https://client.example.org", "logo_base64": "data:image/svg+xml;base64,PHN2ZyB3aWR0aD0iNDAiIGhlaWdodD0iNDAiIHZpZXdCb3g9IjAgMCA0MCA0MCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHJlY3Qgd2lkdGg9IjQwIiBoZWlnaHQ9IjQwIiByeD0iMyIgZmlsbD0iI0YyQzk0QyIvPgo8L3N2Zz4K", "redirect_uris": [ "https://client.example.org/callback", "https://client.example.org/callback2" ] }
3) Send a POST request to the server, substituting the necessary parameters:
curl --request POST \ --url http://localhost:9000/oauth2/register \ --header 'Authorization: Bearer WeOG6wjPzrzAZpYAXwtvQypOYOdp598TqKZWInhMYdGcjy1NoxksnsW42Ptok9oeGCa9TQaLm4QcoCCK0qAXahbU4rdf6BySLpE1j6B7HEiqoB17g8MhWsUQaX5uE1SPhJIr9MWMDkR2QQ4IZYwdXBq1dj1KEcEHDfw3121guyOR0Nu7CIUrbYKRPDMl9zdD60BuWX083tXy4Q9OzS4WS2hLoyXwpBK94bFxWaq27y5OKPOnnG3OotlYJUGisCX' \ --header 'Content-Type: application/json' \ --data '{ "client_name": "My Example Client", "client_uri": "https://client.example.org", "logo_base64": "data:image/svg+xml;base64,PHN2ZyB3aWR0aD0iNDAiIGhlaWdodD0iNDAiIHZpZXdCb3g9IjAgMCA0MCA0MCIgZmlsbD0ibm9uZSIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4KPHJlY3Qgd2lkdGg9IjQwIiBoZWlnaHQ9IjQwIiByeD0iMyIgZmlsbD0iI0YyQzk0QyIvPgo8L3N2Zz4K", "redirect_uris": [ "https://client.example.org/callback", "https://client.example.org/callback2" ] }'
4) The authorization server will issue a response in JSON format with the following parameters: client_id — ID of the created client client_secret — password of the created client client_name — client name redirect_uris - array of uri to redirect code or authorization token grant_types — array of OAuth2 authorization methods token_endpoint_auth_method - array of OAuth2 client authorization methods Sample: { "client_id": "id-dsc0E87LHaO5cNOhFEoD1T5A5GmcT6FD2upUa8LXBHPazNc", "client_secret": "kJ1jexpxE29ZuRxjYpjuqdmSY8OV9j8q3pJTbNHYSgLUmIUWk1", "client_name": "My Example Client", "redirect_uris": [ "https://client.example.org/callback", "https://client.example.org/callback2" ], "grant_types": [ "implicit", "refresh_token", "password", "client_credentials", "authorization_code" ], "token_endpoint_auth_method": [ "client_secret_post", "private_key_jwt", "client_secret_jwt", "none", "client_secret_basic" ] } As a result, the user who owns the authorization token will have a client