Configure your iOS app

You can configure your iOS app statically by editing the FRAuthConfig.plist file.

To configure your iOS app programmatically, refer to Dynamic configuration.

Configuration strings

The required configuration strings are as follows:

Property Description

Property	Description
`forgerock_oauth_client_id`	The `client_id` of the OAuth 2.0 client profile to use.
`forgerock_oauth_redirect_uri`	The `redirect_uri` as configured in the OAuth 2.0 client profile.
`forgerock_oauth_scope`	A list of scopes to request when performing an OAuth 2.0 authorization flow.
`forgerock_oauth_threshold`	A threshold, in seconds, to refresh an OAuth 2.0 token before the `access_token` expires (defaults to `30` seconds).
`forgerock_url`	The base URL of the AM instance to connect to, including port and deployment path. For example, `https://openam.example.com:8443/openam`.
`forgerock_realm`	The realm in which the OAuth 2.0 client profile is configured. The default realm is the top-level realm; `root`.
`forgerock_timeout`	A timeout, in seconds, for each request that communicates with AM.
`forgerock`	The name of the account provider that iOS displays when using single sign-on. For example, "ForgeRock Tutorial App".
`forgerock_account_name`	The name of the user account that iOS displays when using single sign-on. For example, "Demo User".
`forgerock_auth_service`	The name of the user *authentication* tree configured in AM.
`forgerock_cookie_name`	The name of the cookie that contains the SSO token. For example, `iPlanetDirectoryPro`.

forgerock_oauth_client_id

The client_id of the OAuth 2.0 client profile to use.

forgerock_oauth_redirect_uri

The redirect_uri as configured in the OAuth 2.0 client profile.

forgerock_oauth_scope

A list of scopes to request when performing an OAuth 2.0 authorization flow.

forgerock_oauth_threshold

A threshold, in seconds, to refresh an OAuth 2.0 token before the access_token expires (defaults to 30 seconds).

forgerock_url

The base URL of the AM instance to connect to, including port and deployment path. For example, https://openam.example.com:8443/openam.

forgerock_realm

The realm in which the OAuth 2.0 client profile is configured. The default realm is the top-level realm; root.

forgerock_timeout

A timeout, in seconds, for each request that communicates with AM.

forgerock

The name of the account provider that iOS displays when using single sign-on. For example, "ForgeRock Tutorial App".

forgerock_account_name

The name of the user account that iOS displays when using single sign-on. For example, "Demo User".

forgerock_auth_service

The name of the user authentication tree configured in AM.

forgerock_cookie_name

The name of the cookie that contains the SSO token. For example, iPlanetDirectoryPro.

To locate the cookie name in an Identity Cloud tenant, go to Tenant Settings > Global Settings > Server.