Download OpenAPI specification:Download
View, create, and update your management applications. These are typically backend services accessing our platform to perform administrative actions. They can be used to generate client credentials that have tenant-level access to users, roles, apps, settings, and more.
Create a management application
{- "app_name": "My App",
- "app_description": "string",
- "first_client_authentication_protocol": "oidc",
- "first_client": {
- "name": "My Client",
- "description": "string",
- "resources": [
- "string"
], - "authentication_protocol": "oidc",
- "client_group_id": "string",
- "default_custom_claims": [
- "tid"
], - "client_type": "web",
- "response_types": [
- "code"
], - "token_endpoint_auth_method": "client_secret_basic",
- "device_authorization": {
- "enabled": false,
}, - "pkce": "enforcePkceInsteadOfClientCredentials",
- "supported_prompts": [
- "login",
- "consent",
- "none"
], - "token_expiration": {
- "access_token_ttl": 0,
- "refresh_token_ttl": 0,
- "max_refresh_rotate": 0
}
}, - "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": "myapp.com",
- "pkce": "enforcePkceInsteadOfClientCredentials"
}
{- "result": {
- "app_id": "string",
- "tenant_id": "string",
- "app_name": "string",
- "app_description": "string",
- "client_type": "web",
- "logo": "string",
- "client_id": "string",
- "client_display_name": "string",
- "client_description": "string",
- "client_secret": "string",
- "redirect_uris": [
- "string"
], - "login_preferences": {
- "auth_methods": {
- "google": {
- "clientId": "string",
- "clientSecret": "string"
}, - "facebook": {
- "clientId": "string",
- "clientSecret": "string"
}, - "email": {
- "expiresIn": 0,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "email_otp": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "apple": {
- "clientId": "string",
- "clientSecret": "string",
- "appleTeamId": "string",
- "keyId": "string"
}, - "sms": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6
}, - "webauthn_api": {
- "rpId": "string",
- "rpOrigin": "string",
- "rpOrigins": [
- "string"
]
}, - "line": {
- "clientId": "string",
- "clientSecret": "string"
}, - "password": {
- "resetValidityMinutes": 5,
- "passwordComplexity": 5,
- "passwordMinLength": 14,
- "blockPreviousPasswords": 0,
- "passwordExpiresIn": 90,
- "ignoreExpiration": false,
- "maxPasswordFailures": 5,
- "passwordSuspensionDuration": 15,
- "failuresExpireIn": 15,
- "tempPasswordValidityHours": 24,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}, - "requireMFA": false,
- "codeLength": 6
}, - "totp": {
- "algorithm": "sha1",
- "digits": 6,
- "period": 30,
- "window": 2,
- "issuer": "My Company",
- "maxFailures": 3,
- "lockoutDuration": 15
}
}
}, - "created_at": "2019-08-24T14:15:22Z",
- "created_by": "string",
- "updated_at": "2019-08-24T14:15:22Z",
- "resources": [
- "string"
], - "service_providers": [
- "string"
], - "authenticator_preferences": {
- "is_centralized": false,
}, - "allow_public_signup": true,
- "client_auth_method": "client_secret_basic",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "device_authorization": {
- "enabled": false,
}, - "password_sharing_group_id": "string",
- "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": {
- "domain": "myapp.com",
- "updated_at": "2019-08-24T14:15:22Z",
- "status": "pending",
- "error": "string"
}, - "external_communication": {
- "language": "en"
}
}
}
Retrieve a list of all management applications
{- "result": [
- {
- "app_id": "string",
- "tenant_id": "string",
- "app_name": "string",
- "app_description": "string",
- "client_type": "web",
- "client_id": "string",
- "client_display_name": "string",
- "client_description": "string",
- "client_secret": "string",
- "redirect_uris": [
- "string"
], - "login_preferences": {
- "auth_methods": {
- "google": {
- "clientId": "string",
- "clientSecret": "string"
}, - "facebook": {
- "clientId": "string",
- "clientSecret": "string"
}, - "email": {
- "expiresIn": 0,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "email_otp": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "apple": {
- "clientId": "string",
- "clientSecret": "string",
- "appleTeamId": "string",
- "keyId": "string"
}, - "sms": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6
}, - "webauthn_api": {
- "rpId": "string",
- "rpOrigin": "string",
- "rpOrigins": [
- "string"
]
}, - "line": {
- "clientId": "string",
- "clientSecret": "string"
}, - "password": {
- "resetValidityMinutes": 5,
- "passwordComplexity": 5,
- "passwordMinLength": 14,
- "blockPreviousPasswords": 0,
- "passwordExpiresIn": 90,
- "ignoreExpiration": false,
- "maxPasswordFailures": 5,
- "passwordSuspensionDuration": 15,
- "failuresExpireIn": 15,
- "tempPasswordValidityHours": 24,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}, - "requireMFA": false,
- "codeLength": 6
}, - "totp": {
- "algorithm": "sha1",
- "digits": 6,
- "period": 30,
- "window": 2,
- "issuer": "My Company",
- "maxFailures": 3,
- "lockoutDuration": 15
}
}
}, - "created_at": "2019-08-24T14:15:22Z",
- "created_by": "string",
- "updated_at": "2019-08-24T14:15:22Z",
- "resources": [
- "string"
], - "service_providers": [
- "string"
], - "authenticator_preferences": {
- "is_centralized": false,
}, - "allow_public_signup": true,
- "client_auth_method": "client_secret_basic",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "device_authorization": {
- "enabled": false,
}, - "password_sharing_group_id": "string",
- "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": {
- "domain": "myapp.com",
- "updated_at": "2019-08-24T14:15:22Z",
- "status": "pending",
- "error": "string"
}, - "external_communication": {
- "language": "en"
}
}
]
}
Update a management application. Note: Fields that are objects cannot be partially updated, since the new value you set will just replace the current one.
{- "app_name": "My App",
- "app_description": "string",
- "first_client_authentication_protocol": "oidc",
- "first_client": {
- "name": "My Client",
- "description": "string",
- "resources": [
- "string"
], - "authentication_protocol": "oidc",
- "client_group_id": "string",
- "default_custom_claims": [
- "tid"
], - "client_type": "web",
- "response_types": [
- "code"
], - "token_endpoint_auth_method": "client_secret_basic",
- "device_authorization": {
- "enabled": false,
}, - "pkce": "enforcePkceInsteadOfClientCredentials",
- "supported_prompts": [
- "login",
- "consent",
- "none"
], - "token_expiration": {
- "access_token_ttl": 0,
- "refresh_token_ttl": 0,
- "max_refresh_rotate": 0
}
}, - "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": "myapp.com",
- "pkce": "enforcePkceInsteadOfClientCredentials"
}
{- "result": {
- "app_id": "string",
- "tenant_id": "string",
- "app_name": "string",
- "app_description": "string",
- "client_type": "web",
- "logo": "string",
- "client_id": "string",
- "client_display_name": "string",
- "client_description": "string",
- "client_secret": "string",
- "redirect_uris": [
- "string"
], - "login_preferences": {
- "auth_methods": {
- "google": {
- "clientId": "string",
- "clientSecret": "string"
}, - "facebook": {
- "clientId": "string",
- "clientSecret": "string"
}, - "email": {
- "expiresIn": 0,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "email_otp": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "apple": {
- "clientId": "string",
- "clientSecret": "string",
- "appleTeamId": "string",
- "keyId": "string"
}, - "sms": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6
}, - "webauthn_api": {
- "rpId": "string",
- "rpOrigin": "string",
- "rpOrigins": [
- "string"
]
}, - "line": {
- "clientId": "string",
- "clientSecret": "string"
}, - "password": {
- "resetValidityMinutes": 5,
- "passwordComplexity": 5,
- "passwordMinLength": 14,
- "blockPreviousPasswords": 0,
- "passwordExpiresIn": 90,
- "ignoreExpiration": false,
- "maxPasswordFailures": 5,
- "passwordSuspensionDuration": 15,
- "failuresExpireIn": 15,
- "tempPasswordValidityHours": 24,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}, - "requireMFA": false,
- "codeLength": 6
}, - "totp": {
- "algorithm": "sha1",
- "digits": 6,
- "period": 30,
- "window": 2,
- "issuer": "My Company",
- "maxFailures": 3,
- "lockoutDuration": 15
}
}
}, - "created_at": "2019-08-24T14:15:22Z",
- "created_by": "string",
- "updated_at": "2019-08-24T14:15:22Z",
- "resources": [
- "string"
], - "service_providers": [
- "string"
], - "authenticator_preferences": {
- "is_centralized": false,
}, - "allow_public_signup": true,
- "client_auth_method": "client_secret_basic",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "device_authorization": {
- "enabled": false,
}, - "password_sharing_group_id": "string",
- "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": {
- "domain": "myapp.com",
- "updated_at": "2019-08-24T14:15:22Z",
- "status": "pending",
- "error": "string"
}, - "external_communication": {
- "language": "en"
}
}
}
Delete a management application and remove role assignments belonging to it.
{- "message": "Bad request",
- "error_code": 400
}