ForgeRock SDKs

Prepare an assetlinks.json file

To associate your website with your Android app, you need to make public, verifiable statements by using a Digital Asset Links JSON file (assetlinks.json) that is hosted on the website.

You must provide a link to this file in the app’s manifest. For more information, refer to FIDO2 API for Android.

  1. Generate a SHA-256 fingerprint of your app’s signing certificate.

    keytool -list -v -alias <your key alias> -keystore <your keystore file> | grep SHA256

    For more information, refer to Application Signing.

  2. Prepare an assetlinks.json file:

    {
      "relation": [
        "delegate_permission/common.handle_all_urls",
        "delegate_permission/common.get_login_creds"
      ],
      "target": {
        "namespace": "web",
        "site": "https://<your domain>"
      }
    },
    {
      "relation": [
        "delegate_permission/common.handle_all_urls",
        "delegate_permission/common.get_login_creds"
      ],
      "target": {
        "namespace": "android_app",
        "package_name": "<App package name>",
        "sha256_cert_fingerprints": [
          "<App SHA256 Cert fingerprints>"
        ]
      }
    }
  3. Host the file at your domain.

    • For ForgeRock Identity Cloud deployments, see Upload an Android assetlinks.json file in the Identity Cloud documentation.

    • For self-managed deployments, host the file at https://<your domain>/.well-known/assetlinks.json.

Copyright © 2010-2022 ForgeRock, all rights reserved.