Chilkat Online Tools

C++ / ForgeRock Identity Cloud Collection / Step 4: Create a Confidential OAuth 2.0 Client

Back to Collection Items

#include <CkHttp.h>
#include <CkJsonObject.h>
#include <CkStringBuilder.h>
#include <CkHttpResponse.h>

void ChilkatSample(void)
    {
    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkHttp http;
    bool success;

    // Use this online tool to generate code from sample JSON: Generate Code to Create JSON

    // The following JSON is sent in the request body.

    // {
    //   "coreOAuth2ClientConfig": {
    //     "agentgroup": "",
    //     "status": {
    //       "inherited": false,
    //       "value": "Active"
    //     },
    //     "userpassword": "{{postmanClientSecret}}",
    //     "clientType": {
    //       "inherited": false,
    //       "value": "Confidential"
    //     },
    //     "loopbackInterfaceRedirection": {
    //       "inherited": true,
    //       "value": true
    //     },
    //     "redirectionUris": {
    //       "inherited": false,
    //       "value": [
    //         "https://httpbin.org/anything"
    //       ]
    //     },
    //     "scopes": {
    //       "inherited": false,
    //       "value": [
    //         "write",
    //         "read",
    //         "share",
    //         "print",
    //         "copy",
    //         "delete",
    //         "manage",
    //         "edit"
    //       ]
    //     },
    //     "defaultScopes": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "clientName": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "authorizationCodeLifetime": {
    //       "inherited": true,
    //       "value": 0
    //     },
    //     "refreshTokenLifetime": {
    //       "inherited": true,
    //       "value": 0
    //     },
    //     "accessTokenLifetime": {
    //       "inherited": true,
    //       "value": 0
    //     }
    //   },
    //   "advancedOAuth2ClientConfig": {
    //     "name": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "descriptions": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "requestUris": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "responseTypes": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "grantTypes": {
    //       "inherited": false,
    //       "value": [
    //         "authorization_code",
    //         "implicit",
    //         "password",
    //         "client_credentials",
    //         "refresh_token",
    //         "urn:ietf:params:oauth:grant-type:uma-ticket",
    //         "urn:ietf:params:oauth:grant-type:device_code",
    //         "urn:ietf:params:oauth:grant-type:saml2-bearer",
    //         "urn:ietf:params:oauth:grant-type:jwt-bearer",
    //         "urn:openid:params:grant-type:ciba"
    //       ]
    //     },
    //     "contacts": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "tokenEndpointAuthMethod": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "sectorIdentifierUri": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "subjectType": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "updateAccessToken": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "clientUri": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "logoUri": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "policyUri": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "isConsentImplied": {
    //       "inherited": true,
    //       "value": true
    //     },
    //     "mixUpMitigation": {
    //       "inherited": true,
    //       "value": true
    //     }
    //   },
    //   "coreOpenIDClientConfig": {
    //     "claims": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "postLogoutRedirectUri": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "clientSessionUri": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "defaultMaxAge": {
    //       "inherited": true,
    //       "value": 0
    //     },
    //     "defaultMaxAgeEnabled": {
    //       "inherited": true,
    //       "value": true
    //     },
    //     "defaultAcrValues": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     },
    //     "jwtTokenLifetime": {
    //       "inherited": true,
    //       "value": 0
    //     }
    //   },
    //   "signEncOAuth2ClientConfig": {
    //     "jwksUri": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "jwksCacheTimeout": {
    //       "inherited": true,
    //       "value": 0
    //     },
    //     "jwkStoreCacheMissCacheTime": {
    //       "inherited": true,
    //       "value": 0
    //     },
    //     "tokenEndpointAuthSigningAlgorithm": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "jwkSet": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "idTokenSignedResponseAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "idTokenEncryptionEnabled": {
    //       "inherited": true,
    //       "value": true
    //     },
    //     "idTokenEncryptionAlgorithm": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "idTokenEncryptionMethod": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "idTokenPublicEncryptionKey": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "clientJwtPublicKey": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "mTLSTrustedCert": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "mTLSSubjectDN": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "mTLSCertificateBoundAccessTokens": {
    //       "inherited": true,
    //       "value": true
    //     },
    //     "publicKeyLocation": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "userinfoResponseFormat": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "userinfoSignedResponseAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "userinfoEncryptedResponseAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "userinfoEncryptedResponseEncryptionAlgorithm": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "requestParameterSignedAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "requestParameterEncryptedAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "requestParameterEncryptedEncryptionAlgorithm": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "tokenIntrospectionResponseFormat": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "tokenIntrospectionSignedResponseAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "tokenIntrospectionEncryptedResponseAlg": {
    //       "inherited": true,
    //       "value": "string"
    //     },
    //     "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
    //       "inherited": true,
    //       "value": "string"
    //     }
    //   },
    //   "coreUmaClientConfig": {
    //     "claimsRedirectionUris": {
    //       "inherited": true,
    //       "value": [
    //         "Unknown Type: any"
    //       ]
    //     }
    //   }
    // }

    CkJsonObject json;
    json.UpdateString("coreOAuth2ClientConfig.agentgroup","");
    json.UpdateBool("coreOAuth2ClientConfig.status.inherited",false);
    json.UpdateString("coreOAuth2ClientConfig.status.value","Active");
    json.UpdateString("coreOAuth2ClientConfig.userpassword","{{postmanClientSecret}}");
    json.UpdateBool("coreOAuth2ClientConfig.clientType.inherited",false);
    json.UpdateString("coreOAuth2ClientConfig.clientType.value","Confidential");
    json.UpdateBool("coreOAuth2ClientConfig.loopbackInterfaceRedirection.inherited",true);
    json.UpdateBool("coreOAuth2ClientConfig.loopbackInterfaceRedirection.value",true);
    json.UpdateBool("coreOAuth2ClientConfig.redirectionUris.inherited",false);
    json.UpdateString("coreOAuth2ClientConfig.redirectionUris.value[0]","https://httpbin.org/anything");
    json.UpdateBool("coreOAuth2ClientConfig.scopes.inherited",false);
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[0]","write");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[1]","read");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[2]","share");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[3]","print");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[4]","copy");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[5]","delete");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[6]","manage");
    json.UpdateString("coreOAuth2ClientConfig.scopes.value[7]","edit");
    json.UpdateBool("coreOAuth2ClientConfig.defaultScopes.inherited",true);
    json.UpdateString("coreOAuth2ClientConfig.defaultScopes.value[0]","Unknown Type: any");
    json.UpdateBool("coreOAuth2ClientConfig.clientName.inherited",true);
    json.UpdateString("coreOAuth2ClientConfig.clientName.value[0]","Unknown Type: any");
    json.UpdateBool("coreOAuth2ClientConfig.authorizationCodeLifetime.inherited",true);
    json.UpdateInt("coreOAuth2ClientConfig.authorizationCodeLifetime.value",0);
    json.UpdateBool("coreOAuth2ClientConfig.refreshTokenLifetime.inherited",true);
    json.UpdateInt("coreOAuth2ClientConfig.refreshTokenLifetime.value",0);
    json.UpdateBool("coreOAuth2ClientConfig.accessTokenLifetime.inherited",true);
    json.UpdateInt("coreOAuth2ClientConfig.accessTokenLifetime.value",0);
    json.UpdateBool("advancedOAuth2ClientConfig.name.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.name.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.descriptions.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.descriptions.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.requestUris.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.requestUris.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.responseTypes.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.responseTypes.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.grantTypes.inherited",false);
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[0]","authorization_code");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[1]","implicit");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[2]","password");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[3]","client_credentials");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[4]","refresh_token");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[5]","urn:ietf:params:oauth:grant-type:uma-ticket");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[6]","urn:ietf:params:oauth:grant-type:device_code");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[7]","urn:ietf:params:oauth:grant-type:saml2-bearer");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[8]","urn:ietf:params:oauth:grant-type:jwt-bearer");
    json.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[9]","urn:openid:params:grant-type:ciba");
    json.UpdateBool("advancedOAuth2ClientConfig.contacts.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.contacts.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.tokenEndpointAuthMethod.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.tokenEndpointAuthMethod.value","string");
    json.UpdateBool("advancedOAuth2ClientConfig.sectorIdentifierUri.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.sectorIdentifierUri.value","string");
    json.UpdateBool("advancedOAuth2ClientConfig.subjectType.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.subjectType.value","string");
    json.UpdateBool("advancedOAuth2ClientConfig.updateAccessToken.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.updateAccessToken.value","string");
    json.UpdateBool("advancedOAuth2ClientConfig.clientUri.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.clientUri.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.logoUri.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.logoUri.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.policyUri.inherited",true);
    json.UpdateString("advancedOAuth2ClientConfig.policyUri.value[0]","Unknown Type: any");
    json.UpdateBool("advancedOAuth2ClientConfig.isConsentImplied.inherited",true);
    json.UpdateBool("advancedOAuth2ClientConfig.isConsentImplied.value",true);
    json.UpdateBool("advancedOAuth2ClientConfig.mixUpMitigation.inherited",true);
    json.UpdateBool("advancedOAuth2ClientConfig.mixUpMitigation.value",true);
    json.UpdateBool("coreOpenIDClientConfig.claims.inherited",true);
    json.UpdateString("coreOpenIDClientConfig.claims.value[0]","Unknown Type: any");
    json.UpdateBool("coreOpenIDClientConfig.postLogoutRedirectUri.inherited",true);
    json.UpdateString("coreOpenIDClientConfig.postLogoutRedirectUri.value[0]","Unknown Type: any");
    json.UpdateBool("coreOpenIDClientConfig.clientSessionUri.inherited",true);
    json.UpdateString("coreOpenIDClientConfig.clientSessionUri.value","string");
    json.UpdateBool("coreOpenIDClientConfig.defaultMaxAge.inherited",true);
    json.UpdateInt("coreOpenIDClientConfig.defaultMaxAge.value",0);
    json.UpdateBool("coreOpenIDClientConfig.defaultMaxAgeEnabled.inherited",true);
    json.UpdateBool("coreOpenIDClientConfig.defaultMaxAgeEnabled.value",true);
    json.UpdateBool("coreOpenIDClientConfig.defaultAcrValues.inherited",true);
    json.UpdateString("coreOpenIDClientConfig.defaultAcrValues.value[0]","Unknown Type: any");
    json.UpdateBool("coreOpenIDClientConfig.jwtTokenLifetime.inherited",true);
    json.UpdateInt("coreOpenIDClientConfig.jwtTokenLifetime.value",0);
    json.UpdateBool("signEncOAuth2ClientConfig.jwksUri.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.jwksUri.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.jwksCacheTimeout.inherited",true);
    json.UpdateInt("signEncOAuth2ClientConfig.jwksCacheTimeout.value",0);
    json.UpdateBool("signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.inherited",true);
    json.UpdateInt("signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.value",0);
    json.UpdateBool("signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.jwkSet.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.jwkSet.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenSignedResponseAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.idTokenSignedResponseAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionEnabled.inherited",true);
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionEnabled.value",true);
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionMethod.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.idTokenEncryptionMethod.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.clientJwtPublicKey.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.clientJwtPublicKey.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.mTLSTrustedCert.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.mTLSTrustedCert.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.mTLSSubjectDN.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.mTLSSubjectDN.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.inherited",true);
    json.UpdateBool("signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.value",true);
    json.UpdateBool("signEncOAuth2ClientConfig.publicKeyLocation.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.publicKeyLocation.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.userinfoResponseFormat.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.userinfoResponseFormat.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.userinfoSignedResponseAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.userinfoSignedResponseAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.requestParameterSignedAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.requestParameterSignedAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.requestParameterEncryptedAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.requestParameterEncryptedAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.value","string");
    json.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.inherited",true);
    json.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.value","string");
    json.UpdateBool("coreUmaClientConfig.claimsRedirectionUris.inherited",true);
    json.UpdateString("coreUmaClientConfig.claimsRedirectionUris.value[0]","Unknown Type: any");

    http.SetRequestHeader("accept","application/json");
    http.SetRequestHeader("X-Requested-With","ForgeRock Identity Cloud Postman Collection");
    http.SetRequestHeader("Content-Type","application/json");
    http.SetRequestHeader("{{cookieName}}","{{adminSSOToken}}");

    CkStringBuilder sbRequestBody;
    json.EmitSb(sbRequestBody);

    CkHttpResponse *resp = http.PTextSb("PUT","https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanConfidentialClient",sbRequestBody,"utf-8","application/json",false,false);
    if (http.get_LastMethodSuccess() == false) {
        std::cout << http.lastErrorText() << "\r\n";
        return;
    }

    std::cout << resp->get_StatusCode() << "\r\n";
    std::cout << resp->bodyStr() << "\r\n";
    delete resp;
    }

Curl Command

curl -X PUT
	-H "accept: application/json"
	-H "Content-Type: application/json"
	-H "X-Requested-With: ForgeRock Identity Cloud Postman Collection"
	-H "{{cookieName}}: {{adminSSOToken}}"
	-d '{
  "coreOAuth2ClientConfig": {
    "agentgroup": "",
    "status": {
      "inherited": false,
      "value": "Active"
    },
    
    "userpassword": "{{postmanClientSecret}}",
    "clientType": {
      "inherited": false,
      "value": "Confidential"
    },
    "loopbackInterfaceRedirection": {
      "inherited": true,
      "value": true
    },
    "redirectionUris": {
      "inherited": false,
      "value": [
        "https://httpbin.org/anything"
      ]
    },
    "scopes": {
      "inherited": false,
      "value": [
        "write",
        "read",
        "share",
        "print",
        "copy",
        "delete",
        "manage",
        "edit"
      ]
    },
    "defaultScopes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientName": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "authorizationCodeLifetime": {
      "inherited": true,
      "value": 0
    },
    "refreshTokenLifetime": {
      "inherited": true,
      "value": 0
    },
    "accessTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "advancedOAuth2ClientConfig": {
    "name": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "descriptions": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "requestUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "responseTypes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "grantTypes": {
      "inherited": false,
      "value": [
        "authorization_code",
        "implicit",
        "password",
        "client_credentials",
        "refresh_token",
        "urn:ietf:params:oauth:grant-type:uma-ticket",
        "urn:ietf:params:oauth:grant-type:device_code",
        "urn:ietf:params:oauth:grant-type:saml2-bearer",
        "urn:ietf:params:oauth:grant-type:jwt-bearer",
        "urn:openid:params:grant-type:ciba"
      ]
    },
    "contacts": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "tokenEndpointAuthMethod": {
      "inherited": true,
      "value": "string"
    },
    "sectorIdentifierUri": {
      "inherited": true,
      "value": "string"
    },
    "subjectType": {
      "inherited": true,
      "value": "string"
    },
    "updateAccessToken": {
      "inherited": true,
      "value": "string"
    },
    "clientUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "logoUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "policyUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "isConsentImplied": {
      "inherited": true,
      "value": true
    },
    "mixUpMitigation": {
      "inherited": true,
      "value": true
    }
  },
  "coreOpenIDClientConfig": {
    "claims": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "postLogoutRedirectUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientSessionUri": {
      "inherited": true,
      "value": "string"
    },
    "defaultMaxAge": {
      "inherited": true,
      "value": 0
    },
    "defaultMaxAgeEnabled": {
      "inherited": true,
      "value": true
    },
    "defaultAcrValues": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "jwtTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "signEncOAuth2ClientConfig": {
    "jwksUri": {
      "inherited": true,
      "value": "string"
    },
    "jwksCacheTimeout": {
      "inherited": true,
      "value": 0
    },
    "jwkStoreCacheMissCacheTime": {
      "inherited": true,
      "value": 0
    },
    "tokenEndpointAuthSigningAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "jwkSet": {
      "inherited": true,
      "value": "string"
    },
    "idTokenSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionEnabled": {
      "inherited": true,
      "value": true
    },
    "idTokenEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionMethod": {
      "inherited": true,
      "value": "string"
    },
    "idTokenPublicEncryptionKey": {
      "inherited": true,
      "value": "string"
    },
    "clientJwtPublicKey": {
      "inherited": true,
      "value": "string"
    },
    "mTLSTrustedCert": {
      "inherited": true,
      "value": "string"
    },
    "mTLSSubjectDN": {
      "inherited": true,
      "value": "string"
    },
    "mTLSCertificateBoundAccessTokens": {
      "inherited": true,
      "value": true
    },
    "publicKeyLocation": {
      "inherited": true,
      "value": "string"
    },
    "userinfoResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "userinfoSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterSignedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    }
  },
  "coreUmaClientConfig": {
    "claimsRedirectionUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    }
  }
}'
https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanConfidentialClient

Postman Collection Item JSON

{
  "name": "Step 4: Create a Confidential OAuth 2.0 Client",
  "request": {
    "method": "PUT",
    "header": [
      {
        "key": "accept",
        "value": "application/json",
        "type": "text",
        "description": "Specifies certain media types which are acceptable for the resource."
      },
      {
        "key": "Content-Type",
        "value": "application/json",
        "type": "text",
        "description": "The media type of the resource."
      },
      {
        "key": "X-Requested-With",
        "value": "ForgeRock Identity Cloud Postman Collection",
        "type": "text",
        "description": "Custom header."
      },
      {
        "key": "{{cookieName}}",
        "value": "{{adminSSOToken}}",
        "type": "text",
        "description": "SSO token of an administrator. "
      }
    ],
    "body": {
      "mode": "raw",
      "raw": "{\n  \"coreOAuth2ClientConfig\": {\n    \"agentgroup\": \"\",\n    \"status\": {\n      \"inherited\": false,\n      \"value\": \"Active\"\n    },\n    \n    \"userpassword\": \"{{postmanClientSecret}}\",\n    \"clientType\": {\n      \"inherited\": false,\n      \"value\": \"Confidential\"\n    },\n    \"loopbackInterfaceRedirection\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"redirectionUris\": {\n      \"inherited\": false,\n      \"value\": [\n        \"https://httpbin.org/anything\"\n      ]\n    },\n    \"scopes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"write\",\n        \"read\",\n        \"share\",\n        \"print\",\n        \"copy\",\n        \"delete\",\n        \"manage\",\n        \"edit\"\n      ]\n    },\n    \"defaultScopes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientName\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"authorizationCodeLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"refreshTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"accessTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"advancedOAuth2ClientConfig\": {\n    \"name\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"descriptions\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"requestUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"responseTypes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"grantTypes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"authorization_code\",\n        \"implicit\",\n        \"password\",\n        \"client_credentials\",\n        \"refresh_token\",\n        \"urn:ietf:params:oauth:grant-type:uma-ticket\",\n        \"urn:ietf:params:oauth:grant-type:device_code\",\n        \"urn:ietf:params:oauth:grant-type:saml2-bearer\",\n        \"urn:ietf:params:oauth:grant-type:jwt-bearer\",\n        \"urn:openid:params:grant-type:ciba\"\n      ]\n    },\n    \"contacts\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"tokenEndpointAuthMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"sectorIdentifierUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"subjectType\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"updateAccessToken\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"logoUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"policyUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"isConsentImplied\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"mixUpMitigation\": {\n      \"inherited\": true,\n      \"value\": true\n    }\n  },\n  \"coreOpenIDClientConfig\": {\n    \"claims\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"postLogoutRedirectUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientSessionUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"defaultMaxAge\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"defaultMaxAgeEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"defaultAcrValues\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"jwtTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"signEncOAuth2ClientConfig\": {\n    \"jwksUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwksCacheTimeout\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"jwkStoreCacheMissCacheTime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"tokenEndpointAuthSigningAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwkSet\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"idTokenEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenPublicEncryptionKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientJwtPublicKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSTrustedCert\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSSubjectDN\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSCertificateBoundAccessTokens\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"publicKeyLocation\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterSignedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    }\n  },\n  \"coreUmaClientConfig\": {\n    \"claimsRedirectionUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    }\n  }\n}"
    },
    "url": {
      "raw": "{{amUrl}}/json{{realm}}/realm-config/agents/OAuth2Client/{{postmanConfidentialClientId}}",
      "host": [
        "{{amUrl}}"
      ],
      "path": [
        "json{{realm}}",
        "realm-config",
        "agents",
        "OAuth2Client",
        "{{postmanConfidentialClientId}}"
      ]
    },
    "description": "Register a demonstration confidential client, used in the OAuth 2.0 flows section of the collection."
  },
  "response": [
  ]
}