Get an OpenID Connect client

get https://{hostname}/{customerId}/config/clients/{oidcClientId}

Returns information about the specified OpenID Connect client.

Responses

Response body

object

string

Unique identifier of the OIDC client.

name

string

Name of the OIDC client. Names must be unique for each organization.

redirectURIs

array of strings

URLs the user can be redirected to following authentication. The redirect URI can be either a HTTPS: lins or a mobile deep link. However, the only allowed HTTP: link is localhost. When requesting authentication your request needs to include one of the URIs specified in the redirectURIs member. If it doesn’t, the request fails.

redirectURIs

loginPolicy

string

Unique identifier of the login policy assigned to the client. Login policies do such things as provide the exact path to the Capture domain and the user profile entity type, and point the user to the appropriate login page.

tokenPolicy

string

Unique identifier of the token policy assigned to the client. Token policies specify the time-to-live values for access and refresh tokens.

type

string

Specifies the OIDC client type. Confidential clients require you to pass the client secret in the authorization request. Public client don’t require this and don’t even have a client secret.

public confidential

href

string

Configuration URL for the OIDC client. This value is automatically assigned when the OIDC client is created.

application_client

string

Configuration link for the Identity Cloud API client assigned to the OIDC client. Application clients provide a bridge between the Identity Cloud infrastructure and the OAuth and OIDC protocols. The application client is automatically assigned when the OIDC client is created.

Language

Authentication

Remember to add your authentication credentials to run this code.

URL


xxxxxxxxxx
1
curl --request GET \
2
     --url https://hostname/customerId/config/clients/oidcClientId \
# Add Authorization header to this snippet
3
     --header 'accept: application/json'


xxxxxxxxxx
21
 
1
{
2
  "id": "d0fb7483-46b1-43b6-b754-daba398380f2",
3
  "name": "Self-Study Public Client",
4
  "redirectURIs": [
5
    "http://localhost",
6
    "http://localhost:3001/redirect_uri",
7
    "https://openidconnect.net/callback",
8
    "https://oidc-playground.akamai.com/redirect_uri"
9
  ],
10
  "loginPolicy": "ad2cad34-e06f-463e-a43f-b5c8af0ee965",
11
  "tokenPolicy": "5a1e3d0e-7a57-48ce-aa9c-b303345f5747",
12
  "type": "public",
13
  "_links": {
14
    "self": {
15
      "href": "/config/e0a70b4f-1eef-4856-bcdb-f050fee66aae/clients/d0fb7483-46b1-43b6-b754-daba398380f2"
16
    },
17
    "application_client": {
18
      "href": "/config/79y4mqf2rt3bxs378kw5479xdu/clients/ja695m5n6quhdevc3qugu4f557yvxrhs"
19
    }
20
  }
21
}

200Successful response

400Typically indicates a syntax error or invalid JSON.

401Either you didn't specify an authentication method for the call or the token was rejected.

403Typically occurs when you make a call using an invalid or expired administrative access token. See Get started for information on configuring authentication for Hosted Login.

404The specified item couldn't be found.

409Dependency error.