ForgeRock Developer Experience

Register the SDKs as an OAuth 2.0 client application

Applies to:

  • ForgeRock SDK for Android

  • ForgeRock SDK for iOS

  • ForgeRock SDK for JavaScript

The OAuth 2.0 client profile defines how an application connects to AM to obtain OAuth 2.0 tokens.

To allow the SDKs to connect to AMd and obtain OAuth 2.0 tokens, you must register an OAuth 2.0 client application.

This client application defines how the SDKs will connect and obtain tokens.

To register the SDKs as an OAuth 2.0 application in AM, follow these steps:

  1. Log in to the AM admin UI as an administrator.

  2. Navigate to Applications > OAuth 2.0 > Clients, and then click Add Client.

  3. In Client ID, enter sdkPublicClient.

  4. Leave Client secret empty.

  5. In Redirection URIs, enter the following values:

    https://sdkapp.example.com:8443/callback
https://react.example.com:8443/callback
https://angular.example.com:8443
https://com.example.reactnative.todo/callback
https://com.example.flutter.todo/callback
    Also add any other domains where you will be hosting SDK applications.

  6. In Scopes, enter the following values:

    openid
profile
email
address
phone

  7. Click Create.

    AM creates the new OAuth 2.0 client, and displays the properties for further configuration.

  8. On the Core tab:

    1. In Client type, select Public.

    2. Disable Allow wildcard ports in redirect URIs.

    3. Click Save Changes.

  9. On the Advanced tab:

    1. In Grant Types, enter the following values:

      Authorization Code
Refresh Token

    2. In Token Endpoint Authentication Method, select None.

    3. Enable the Implied consent property.

  10. Click Save Changes.

Copyright © 2010-2023 ForgeRock, all rights reserved.