Update Client
Updates an existing OAuth client's configuration. Use update_mask to specify which fields to update.
Required scopes: oauth:clients:manage
JWT access token obtained via OAuth2 flow or service account
In: header
Header Parameters
Define the version of the Connect protocol
1Define the timeout, in ms
Request Body
application/json
Unique identifier for the OAuth Client
uuidOptional name for the OAuth Client
1 <= length <= 64Optional URI to redirect to after authentication
uri1 <= length <= 256Optional support for refresh tokens
Optional support for implicit grant flow
Optional support for device code grant flow
Optional support for authorization code grant flow
Optional website URL of the OAuth Client
uri1 <= length <= 128Optional description of the OAuth Client
1 <= length <= 256List of client IDs from which this client will accept delegated tokens via token exchange (RFC 8693)
Fields to update. If not provided, all set fields are updated. Include "logo_url" to clear/update the logo (empty string removes the logo). Include "allowed_delegators" to sync delegators (empty array removes all).
Optional logo URL - set to empty string in update_mask to clear the logo
Backchannel logout URI for OIDC Back-Channel Logout 1.0 (must be HTTPS, or HTTP for localhost)
uriWhether the RP requires a sid claim in the logout token
Front-channel logout URI for OIDC Front-Channel Logout 1.0 (must be HTTPS, or HTTP for localhost)
uriWhether the RP requires sid and iss in the logout request
List of allowed post-logout redirect URIs for RP-Initiated Logout
Whether the client is verified (admin only - ignored for non-admin users)
Response Body
application/json
application/json
curl -X POST "https://auth.xeonr.io/xeonr.auth.api.v1.ClientsService/UpdateClient" \ -H "Connect-Protocol-Version: 1" \ -H "Content-Type: application/json" \ -d '{}'{
"client": {
"clientId": "550e8400-e29b-41d4-a716-446655440000",
"clientSecret": "sk_live_a1b2c3d4e5f6g7h8i9j0...",
"name": "My OAuth App",
"redirectUri": "https://myapp.example.com/oauth/callback",
"supportsRefreshToken": true,
"supportsImplicitGrant": true,
"supportsDeviceCodeGrant": true,
"supportsCodeGrant": true,
"websiteUrl": "https://myapp.example.com",
"createdAt": "2023-01-15T01:30:15.01Z",
"updatedAt": "2023-01-15T01:30:15.01Z",
"description": "A sample OAuth application for demonstration purposes",
"isVerified": true,
"applicationId": "app_prod_myapp",
"usesManagedBuckets": true,
"applicationBindings": [
{
"applicationId": "app_prod_myapp",
"config": {
"jsonConfig": {
"property1": {},
"property2": {}
}
}
}
],
"allowedDelegators": [
"550e8400-e29b-41d4-a716-446655440001"
],
"logoUrl": "https://cdn.example.com/logos/myapp.png",
"backchannelLogoutUri": "https://myapp.example.com/backchannel-logout",
"backchannelLogoutSessionRequired": true,
"frontchannelLogoutUri": "https://myapp.example.com/frontchannel-logout",
"frontchannelLogoutSessionRequired": true,
"postLogoutRedirectUris": [
"https://myapp.example.com/logged-out"
]
}
}{
"code": "not_found",
"message": "string",
"details": [
{
"type": "string",
"value": "string",
"debug": {}
}
]
}Regenerate Client Secret POST
Generates a new client secret for an OAuth client. The old secret will be immediately invalidated. **Required scopes:** `oauth:clients:manage`
Upload Client Logo POST
Uploads a logo image for an OAuth client. Supported formats: PNG, JPEG, WebP, GIF. Maximum size: 2MB, 512x512 pixels. **Required scopes:** `oauth:clients:manage`