docs/interfaces/management.Management.UpdateClientResponseContent.html
interface UpdateClientResponseContent {
client_id?: string;
tenant?: string;
name?: string;
description?: string;
global?: boolean;
client_secret?: string;
app_type?: Management.ClientAppTypeEnum;
logo_uri?: string;
is_first_party?: boolean;
oidc_conformant?: boolean;
callbacks?: string[];
allowed_origins?: string[];
web_origins?: string[];
client_aliases?: string[];
allowed_clients?: string[];
allowed_logout_urls?: string[];
session_transfer?: ClientSessionTransferConfiguration | null;
oidc_logout?: ClientOidcBackchannelLogoutSettings;
grant_types?: string[];
jwt_configuration?: ClientJwtConfiguration;
signing_keys?: ClientSigningKeys;
encryption_key?: ClientEncryptionKey | null;
sso?: boolean;
sso_disabled?: boolean;
cross_origin_authentication?: boolean;
cross_origin_loc?: string;
custom_login_page_on?: boolean;
custom_login_page?: string;
custom_login_page_preview?: string;
form_template?: string;
addons?: ClientAddons;
token_endpoint_auth_method?: Management.ClientTokenEndpointAuthMethodEnum;
is_token_endpoint_ip_header_trusted?: boolean;
client_metadata?: ClientMetadata;
mobile?: ClientMobile;
initiate_login_uri?: string;
refresh_token?: ClientRefreshTokenConfiguration | null;
default_organization?: ClientDefaultOrganization | null;
organization_usage?: Management.ClientOrganizationUsageEnum;
organization_require_behavior?: Management.ClientOrganizationRequireBehaviorEnum;
organization_discovery_methods?: Management.ClientOrganizationDiscoveryEnum[];
client_authentication_methods?: ClientAuthenticationMethod | null;
require_pushed_authorization_requests?: boolean;
require_proof_of_possession?: boolean;
signed_request_object?: ClientSignedRequestObjectWithCredentialId;
compliance_level?: Management.ClientComplianceLevelEnum | null;
skip_non_verifiable_callback_uri_confirmation_prompt?: boolean;
token_exchange?: ClientTokenExchangeConfiguration;
par_request_expiry?: number | null;
token_quota?: TokenQuota;
express_configuration?: ExpressConfiguration;
my_organization_configuration?: ClientMyOrganizationResponseConfiguration;
third_party_security_mode?: Management.ClientThirdPartySecurityModeEnum;
redirection_policy?: Management.ClientRedirectionPolicyEnum;
resource_server_identifier?: string;
async_approval_notification_channels?: ClientAsyncApprovalNotificationsChannelsApiPostConfiguration;
external_metadata_type?: "cimd";
external_metadata_created_by?: Management.ClientExternalMetadataCreatedByEnum;
external_client_id?: string;
jwks_uri?: string;
key: string: any;
}
Accepts any additional properties
client_id?tenant?name?description?global?client_secret?app_type?logo_uri?is_first_party?oidc_conformant?callbacks?allowed_origins?web_origins?client_aliases?allowed_clients?allowed_logout_urls?session_transfer?oidc_logout?grant_types?jwt_configuration?signing_keys?encryption_key?sso?sso_disabled?cross_origin_authentication?cross_origin_loc?custom_login_page_on?custom_login_page?custom_login_page_preview?form_template?addons?token_endpoint_auth_method?is_token_endpoint_ip_header_trusted?client_metadata?mobile?initiate_login_uri?refresh_token?default_organization?organization_usage?organization_require_behavior?organization_discovery_methods?client_authentication_methods?require_pushed_authorization_requests?require_proof_of_possession?signed_request_object?compliance_level?skip_non_verifiable_callback_uri_confirmation_prompt?token_exchange?par_request_expiry?token_quota?express_configuration?my_organization_configuration?third_party_security_mode?redirection_policy?resource_server_identifier?async_approval_notification_channels?external_metadata_type?external_metadata_created_by?external_client_id?jwks_uri?
Optionalclient_idclient_id?: string
ID of this client.
Optionaltenanttenant?: string
Name of the tenant this client belongs to.
Optionalnamename?: string
Name of this client (min length: 1 character, does not allow < or >).
Optionaldescriptiondescription?: string
Free text description of this client (max length: 140 characters).
Optionalglobalglobal?: boolean
Whether this is your global 'All Applications' client representing legacy tenant settings (true) or a regular client (false).
Optionalclient_secretclient_secret?: string
Client secret (which you must not make public).
Optionalapp_typeapp_type?: Management.ClientAppTypeEnum
Optionallogo_urilogo_uri?: string
URL of the logo to display for this client. Recommended size is 150x150 pixels.
Optionalis_first_partyis_first_party?: boolean
Whether this client a first party client (true) or not (false).
Optionaloidc_conformantoidc_conformant?: boolean
Whether this client conforms to strict OIDC specifications (true) or uses legacy features (false).
Optionalcallbackscallbacks?: string[]
Comma-separated list of URLs whitelisted for Auth0 to use as a callback to the client after authentication.
Optionalallowed_originsallowed_origins?: string[]
Comma-separated list of URLs allowed to make requests from JavaScript to Auth0 API (typically used with CORS). By default, all your callback URLs will be allowed. This field allows you to enter other origins if necessary. You can also use wildcards at the subdomain level (e.g., https://*.contoso.com). Query strings and hash information are not taken into account when validating these URLs.
Optionalweb_originsweb_origins?: string[]
Comma-separated list of allowed origins for use with Cross-Origin Authentication, Device Flow, and web message response mode.
Optionalclient_aliasesclient_aliases?: string[]
List of audiences/realms for SAML protocol. Used by the wsfed addon.
Optionalallowed_clientsallowed_clients?: string[]
List of allow clients and API ids that are allowed to make delegation requests. Empty means all all your clients are allowed.
Optionalallowed_logout_urlsallowed_logout_urls?: string[]
Comma-separated list of URLs that are valid to redirect to after logout from Auth0. Wildcards are allowed for subdomains.
Optionalsession_transfersession_transfer?: ClientSessionTransferConfiguration | null
Optionaloidc_logoutoidc_logout?: ClientOidcBackchannelLogoutSettings
Optionalgrant_typesgrant_types?: string[]
List of grant types supported for this application. Can include authorization_code, implicit, refresh_token, client_credentials, password, http://auth0.com/oauth/grant-type/password-realm, http://auth0.com/oauth/grant-type/mfa-oob, http://auth0.com/oauth/grant-type/mfa-otp, http://auth0.com/oauth/grant-type/mfa-recovery-code, urn:openid:params:grant-type:ciba, urn:ietf:params:oauth:grant-type:device_code, and urn:auth0:params:oauth:grant-type:token-exchange:federated-connection-access-token.
Optionaljwt_configurationjwt_configuration?: ClientJwtConfiguration
Optionalsigning_keyssigning_keys?: ClientSigningKeys
Optionalencryption_keyencryption_key?: ClientEncryptionKey | null
Optionalssosso?: boolean
Applies only to SSO clients and determines whether Auth0 will handle Single Sign On (true) or whether the Identity Provider will (false).
Optionalsso_disabledsso_disabled?: boolean
Whether Single Sign On is disabled (true) or enabled (true). Defaults to true.
Optionalcross_origin_authenticationcross_origin_authentication?: boolean
Whether this client can be used to make cross-origin authentication requests (true) or it is not allowed to make such requests (false).
Optionalcross_origin_loccross_origin_loc?: string
URL of the location in your site where the cross origin verification takes place for the cross-origin auth flow when performing Auth in your own domain instead of Auth0 hosted login page.
Optionalcustom_login_page_oncustom_login_page_on?: boolean
Whether a custom login page is to be used (true) or the default provided login page (false).
Optionalcustom_login_pagecustom_login_page?: string
The content (HTML, CSS, JS) of the custom login page.
Optionalcustom_login_page_previewcustom_login_page_preview?: string
The content (HTML, CSS, JS) of the custom login page. (Used on Previews)
Optionalform_templateform_template?: string
HTML form template to be used for WS-Federation.
Optionaladdonsaddons?: ClientAddons
Optionaltoken_endpoint_auth_methodtoken_endpoint_auth_method?: Management.ClientTokenEndpointAuthMethodEnum
Optionalis_token_endpoint_ip_header_trustedis_token_endpoint_ip_header_trusted?: boolean
If true, trust that the IP specified in the auth0-forwarded-for header is the end-user's IP for brute-force-protection on token endpoint.
Optionalclient_metadataclient_metadata?: ClientMetadata
Optionalmobilemobile?: ClientMobile
Optionalinitiate_login_uriinitiate_login_uri?: string
Initiate login uri, must be https
Optionalrefresh_tokenrefresh_token?: ClientRefreshTokenConfiguration | null
Optionaldefault_organizationdefault_organization?: ClientDefaultOrganization | null
Optionalorganization_usageorganization_usage?: Management.ClientOrganizationUsageEnum
Optionalorganization_require_behaviororganization_require_behavior?: Management.ClientOrganizationRequireBehaviorEnum
Optionalorganization_discovery_methodsorganization_discovery_methods?: Management.ClientOrganizationDiscoveryEnum[]
Defines the available methods for organization discovery during the pre_login_prompt. Users can discover their organization either by email, organization_name or both.
Optionalclient_authentication_methodsclient_authentication_methods?: ClientAuthenticationMethod | null
Optionalrequire_pushed_authorization_requestsrequire_pushed_authorization_requests?: boolean
Makes the use of Pushed Authorization Requests mandatory for this client
Optionalrequire_proof_of_possessionrequire_proof_of_possession?: boolean
Makes the use of Proof-of-Possession mandatory for this client
Optionalsigned_request_objectsigned_request_object?: ClientSignedRequestObjectWithCredentialId
Optionalcompliance_levelcompliance_level?: Management.ClientComplianceLevelEnum | null
Optionalskip_non_verifiable_callback_uri_confirmation_promptskip_non_verifiable_callback_uri_confirmation_prompt?: boolean
Controls whether a confirmation prompt is shown during login flows when the redirect URI uses non-verifiable callback URIs (for example, a custom URI schema such as myapp://, or localhost). If set to true, a confirmation prompt will not be shown. We recommend that this is set to false for improved protection from malicious apps. See https://auth0.com/docs/secure/security-guidance/measures-against-app-impersonation for more information.
Optionaltoken_exchangetoken_exchange?: ClientTokenExchangeConfiguration
Optionalpar_request_expirypar_request_expiry?: number | null
Specifies how long, in seconds, a Pushed Authorization Request URI remains valid
Optionaltoken_quotatoken_quota?: TokenQuota
Optionalexpress_configurationexpress_configuration?: ExpressConfiguration
Optionalmy_organization_configurationmy_organization_configuration?: ClientMyOrganizationResponseConfiguration
Optionalthird_party_security_modethird_party_security_mode?: Management.ClientThirdPartySecurityModeEnum
Optionalredirection_policyredirection_policy?: Management.ClientRedirectionPolicyEnum
Optionalresource_server_identifierresource_server_identifier?: string
The identifier of the resource server that this client is linked to.
Optionalasync_approval_notification_channelsasync_approval_notification_channels?: ClientAsyncApprovalNotificationsChannelsApiPostConfiguration
Optionalexternal_metadata_typeexternal_metadata_type?: "cimd"
Optionalexternal_metadata_created_byexternal_metadata_created_by?: Management.ClientExternalMetadataCreatedByEnum
Optionalexternal_client_idexternal_client_id?: string
An alternate client identifier to be used during authorization flows. Only supports CIMD-based client identifiers.
Optionaljwks_urijwks_uri?: string
URL for the JSON Web Key Set (JWKS) containing the public keys used for private_key_jwt authentication. Only present for CIMD clients using private_key_jwt authentication.
Member Visibility
ThemeOSLightDark
Properties client_idtenantnamedescriptionglobalclient_secretapp_typelogo_uriis_first_partyoidc_conformantcallbacksallowed_originsweb_originsclient_aliasesallowed_clientsallowed_logout_urlssession_transferoidc_logoutgrant_typesjwt_configurationsigning_keysencryption_keyssosso_disabledcross_origin_authenticationcross_origin_loccustom_login_page_oncustom_login_pagecustom_login_page_previewform_templateaddonstoken_endpoint_auth_methodis_token_endpoint_ip_header_trustedclient_metadatamobileinitiate_login_urirefresh_tokendefault_organizationorganization_usageorganization_require_behaviororganization_discovery_methodsclient_authentication_methodsrequire_pushed_authorization_requestsrequire_proof_of_possessionsigned_request_objectcompliance_levelskip_non_verifiable_callback_uri_confirmation_prompttoken_exchangepar_request_expirytoken_quotaexpress_configurationmy_organization_configurationthird_party_security_moderedirection_policyresource_server_identifierasync_approval_notification_channelsexternal_metadata_typeexternal_metadata_created_byexternal_client_idjwks_uri