How do I create and app using PKCE Authorization Code using the API

andrea · March 2, 2022, 5:11pm

You’ll need to do three things when creating the OIDC app

set the “token_endpoint_auth_method” to “none” (so that PKCE auth is used)
set “application_type” to “browser” to make a SPA type app (or ‘native’, if making a Native app)
set “response_types” to “code”

Example request body that should work:

{
    "name": "oidc_client",
    "label": "Sample PKCE App",
    "signOnMode": "OPENID_CONNECT",
    "credentials": {
      "oauthClient": {
        "token_endpoint_auth_method": "none"
      }
    },
    "settings": {
      "oauthClient": {
        "redirect_uris": [
          "http://localhost:8080/login/callback"
        ],
        "response_types": [
          "code"
        ],
        "grant_types": [
          "authorization_code"
        ],
        "application_type": "browser"
      }
    }
}

Post		Replies	Views
Unable to use PKCE auth when creating a SPA application Questions	2	3206	July 4, 2021
Authorization Code w/ PKCE Flow for Web Apps OAuth/OIDC	4	3596	April 24, 2023
OIDC PKCE GoLang CLI OAuth/OIDC	2	3015	February 12, 2024
Use PKCE with OpenID Connect (not OAuth) Questions	2	3628	October 16, 2019
Okta OIDC with PKCE and Client credential in sible application OAuth/OIDC	2	51	January 18, 2025

How do I create and app using PKCE Authorization Code using the API

Related topics