Chilkat Online Tools

lianja / ForgeRock Identity Cloud Collection / Step 4: Create a Confidential OAuth 2.0 Client

Back to Collection Items

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loHttp = createobject("CkHttp")

// Use this online tool to generate code from sample JSON: Generate Code to Create JSON

// The following JSON is sent in the request body.

// {
//   "coreOAuth2ClientConfig": {
//     "agentgroup": "",
//     "status": {
//       "inherited": false,
//       "value": "Active"
//     },
//     "userpassword": "{{postmanClientSecret}}",
//     "clientType": {
//       "inherited": false,
//       "value": "Confidential"
//     },
//     "loopbackInterfaceRedirection": {
//       "inherited": true,
//       "value": true
//     },
//     "redirectionUris": {
//       "inherited": false,
//       "value": [
//         "https://httpbin.org/anything"
//       ]
//     },
//     "scopes": {
//       "inherited": false,
//       "value": [
//         "write",
//         "read",
//         "share",
//         "print",
//         "copy",
//         "delete",
//         "manage",
//         "edit"
//       ]
//     },
//     "defaultScopes": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "clientName": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "authorizationCodeLifetime": {
//       "inherited": true,
//       "value": 0
//     },
//     "refreshTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     },
//     "accessTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     }
//   },
//   "advancedOAuth2ClientConfig": {
//     "name": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "descriptions": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "requestUris": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "responseTypes": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "grantTypes": {
//       "inherited": false,
//       "value": [
//         "authorization_code",
//         "implicit",
//         "password",
//         "client_credentials",
//         "refresh_token",
//         "urn:ietf:params:oauth:grant-type:uma-ticket",
//         "urn:ietf:params:oauth:grant-type:device_code",
//         "urn:ietf:params:oauth:grant-type:saml2-bearer",
//         "urn:ietf:params:oauth:grant-type:jwt-bearer",
//         "urn:openid:params:grant-type:ciba"
//       ]
//     },
//     "contacts": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "tokenEndpointAuthMethod": {
//       "inherited": true,
//       "value": "string"
//     },
//     "sectorIdentifierUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "subjectType": {
//       "inherited": true,
//       "value": "string"
//     },
//     "updateAccessToken": {
//       "inherited": true,
//       "value": "string"
//     },
//     "clientUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "logoUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "policyUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "isConsentImplied": {
//       "inherited": true,
//       "value": true
//     },
//     "mixUpMitigation": {
//       "inherited": true,
//       "value": true
//     }
//   },
//   "coreOpenIDClientConfig": {
//     "claims": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "postLogoutRedirectUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "clientSessionUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "defaultMaxAge": {
//       "inherited": true,
//       "value": 0
//     },
//     "defaultMaxAgeEnabled": {
//       "inherited": true,
//       "value": true
//     },
//     "defaultAcrValues": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "jwtTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     }
//   },
//   "signEncOAuth2ClientConfig": {
//     "jwksUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "jwksCacheTimeout": {
//       "inherited": true,
//       "value": 0
//     },
//     "jwkStoreCacheMissCacheTime": {
//       "inherited": true,
//       "value": 0
//     },
//     "tokenEndpointAuthSigningAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "jwkSet": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenEncryptionEnabled": {
//       "inherited": true,
//       "value": true
//     },
//     "idTokenEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenEncryptionMethod": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenPublicEncryptionKey": {
//       "inherited": true,
//       "value": "string"
//     },
//     "clientJwtPublicKey": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSTrustedCert": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSSubjectDN": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSCertificateBoundAccessTokens": {
//       "inherited": true,
//       "value": true
//     },
//     "publicKeyLocation": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoResponseFormat": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoEncryptedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoEncryptedResponseEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterSignedAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterEncryptedAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterEncryptedEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionResponseFormat": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionEncryptedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     }
//   },
//   "coreUmaClientConfig": {
//     "claimsRedirectionUris": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     }
//   }
// }

loJson = createobject("CkJsonObject")
loJson.UpdateString("coreOAuth2ClientConfig.agentgroup","")
loJson.UpdateBool("coreOAuth2ClientConfig.status.inherited",.F.)
loJson.UpdateString("coreOAuth2ClientConfig.status.value","Active")
loJson.UpdateString("coreOAuth2ClientConfig.userpassword","{{postmanClientSecret}}")
loJson.UpdateBool("coreOAuth2ClientConfig.clientType.inherited",.F.)
loJson.UpdateString("coreOAuth2ClientConfig.clientType.value","Confidential")
loJson.UpdateBool("coreOAuth2ClientConfig.loopbackInterfaceRedirection.inherited",.T.)
loJson.UpdateBool("coreOAuth2ClientConfig.loopbackInterfaceRedirection.value",.T.)
loJson.UpdateBool("coreOAuth2ClientConfig.redirectionUris.inherited",.F.)
loJson.UpdateString("coreOAuth2ClientConfig.redirectionUris.value[0]","https://httpbin.org/anything")
loJson.UpdateBool("coreOAuth2ClientConfig.scopes.inherited",.F.)
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[0]","write")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[1]","read")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[2]","share")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[3]","print")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[4]","copy")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[5]","delete")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[6]","manage")
loJson.UpdateString("coreOAuth2ClientConfig.scopes.value[7]","edit")
loJson.UpdateBool("coreOAuth2ClientConfig.defaultScopes.inherited",.T.)
loJson.UpdateString("coreOAuth2ClientConfig.defaultScopes.value[0]","Unknown Type: any")
loJson.UpdateBool("coreOAuth2ClientConfig.clientName.inherited",.T.)
loJson.UpdateString("coreOAuth2ClientConfig.clientName.value[0]","Unknown Type: any")
loJson.UpdateBool("coreOAuth2ClientConfig.authorizationCodeLifetime.inherited",.T.)
loJson.UpdateInt("coreOAuth2ClientConfig.authorizationCodeLifetime.value",0)
loJson.UpdateBool("coreOAuth2ClientConfig.refreshTokenLifetime.inherited",.T.)
loJson.UpdateInt("coreOAuth2ClientConfig.refreshTokenLifetime.value",0)
loJson.UpdateBool("coreOAuth2ClientConfig.accessTokenLifetime.inherited",.T.)
loJson.UpdateInt("coreOAuth2ClientConfig.accessTokenLifetime.value",0)
loJson.UpdateBool("advancedOAuth2ClientConfig.name.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.name.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.descriptions.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.descriptions.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.requestUris.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.requestUris.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.responseTypes.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.responseTypes.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.grantTypes.inherited",.F.)
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[0]","authorization_code")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[1]","implicit")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[2]","password")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[3]","client_credentials")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[4]","refresh_token")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[5]","urn:ietf:params:oauth:grant-type:uma-ticket")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[6]","urn:ietf:params:oauth:grant-type:device_code")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[7]","urn:ietf:params:oauth:grant-type:saml2-bearer")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[8]","urn:ietf:params:oauth:grant-type:jwt-bearer")
loJson.UpdateString("advancedOAuth2ClientConfig.grantTypes.value[9]","urn:openid:params:grant-type:ciba")
loJson.UpdateBool("advancedOAuth2ClientConfig.contacts.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.contacts.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.tokenEndpointAuthMethod.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.tokenEndpointAuthMethod.value","string")
loJson.UpdateBool("advancedOAuth2ClientConfig.sectorIdentifierUri.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.sectorIdentifierUri.value","string")
loJson.UpdateBool("advancedOAuth2ClientConfig.subjectType.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.subjectType.value","string")
loJson.UpdateBool("advancedOAuth2ClientConfig.updateAccessToken.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.updateAccessToken.value","string")
loJson.UpdateBool("advancedOAuth2ClientConfig.clientUri.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.clientUri.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.logoUri.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.logoUri.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.policyUri.inherited",.T.)
loJson.UpdateString("advancedOAuth2ClientConfig.policyUri.value[0]","Unknown Type: any")
loJson.UpdateBool("advancedOAuth2ClientConfig.isConsentImplied.inherited",.T.)
loJson.UpdateBool("advancedOAuth2ClientConfig.isConsentImplied.value",.T.)
loJson.UpdateBool("advancedOAuth2ClientConfig.mixUpMitigation.inherited",.T.)
loJson.UpdateBool("advancedOAuth2ClientConfig.mixUpMitigation.value",.T.)
loJson.UpdateBool("coreOpenIDClientConfig.claims.inherited",.T.)
loJson.UpdateString("coreOpenIDClientConfig.claims.value[0]","Unknown Type: any")
loJson.UpdateBool("coreOpenIDClientConfig.postLogoutRedirectUri.inherited",.T.)
loJson.UpdateString("coreOpenIDClientConfig.postLogoutRedirectUri.value[0]","Unknown Type: any")
loJson.UpdateBool("coreOpenIDClientConfig.clientSessionUri.inherited",.T.)
loJson.UpdateString("coreOpenIDClientConfig.clientSessionUri.value","string")
loJson.UpdateBool("coreOpenIDClientConfig.defaultMaxAge.inherited",.T.)
loJson.UpdateInt("coreOpenIDClientConfig.defaultMaxAge.value",0)
loJson.UpdateBool("coreOpenIDClientConfig.defaultMaxAgeEnabled.inherited",.T.)
loJson.UpdateBool("coreOpenIDClientConfig.defaultMaxAgeEnabled.value",.T.)
loJson.UpdateBool("coreOpenIDClientConfig.defaultAcrValues.inherited",.T.)
loJson.UpdateString("coreOpenIDClientConfig.defaultAcrValues.value[0]","Unknown Type: any")
loJson.UpdateBool("coreOpenIDClientConfig.jwtTokenLifetime.inherited",.T.)
loJson.UpdateInt("coreOpenIDClientConfig.jwtTokenLifetime.value",0)
loJson.UpdateBool("signEncOAuth2ClientConfig.jwksUri.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.jwksUri.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.jwksCacheTimeout.inherited",.T.)
loJson.UpdateInt("signEncOAuth2ClientConfig.jwksCacheTimeout.value",0)
loJson.UpdateBool("signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.inherited",.T.)
loJson.UpdateInt("signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.value",0)
loJson.UpdateBool("signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.jwkSet.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.jwkSet.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenSignedResponseAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.idTokenSignedResponseAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionEnabled.inherited",.T.)
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionEnabled.value",.T.)
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenEncryptionMethod.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.idTokenEncryptionMethod.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.clientJwtPublicKey.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.clientJwtPublicKey.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.mTLSTrustedCert.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.mTLSTrustedCert.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.mTLSSubjectDN.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.mTLSSubjectDN.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.inherited",.T.)
loJson.UpdateBool("signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.value",.T.)
loJson.UpdateBool("signEncOAuth2ClientConfig.publicKeyLocation.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.publicKeyLocation.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.userinfoResponseFormat.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.userinfoResponseFormat.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.userinfoSignedResponseAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.userinfoSignedResponseAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.requestParameterSignedAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.requestParameterSignedAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.requestParameterEncryptedAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.requestParameterEncryptedAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.value","string")
loJson.UpdateBool("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.inherited",.T.)
loJson.UpdateString("signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.value","string")
loJson.UpdateBool("coreUmaClientConfig.claimsRedirectionUris.inherited",.T.)
loJson.UpdateString("coreUmaClientConfig.claimsRedirectionUris.value[0]","Unknown Type: any")

loHttp.SetRequestHeader("accept","application/json")
loHttp.SetRequestHeader("X-Requested-With","ForgeRock Identity Cloud Postman Collection")
loHttp.SetRequestHeader("Content-Type","application/json")
loHttp.SetRequestHeader("{{cookieName}}","{{adminSSOToken}}")

loSbRequestBody = createobject("CkStringBuilder")
loJson.EmitSb(loSbRequestBody)

loResp = loHttp.PTextSb("PUT","https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanConfidentialClient",loSbRequestBody,"utf-8","application/json",.F.,.F.)
if (loHttp.LastMethodSuccess = .F.) then
    ? loHttp.LastErrorText
    release loHttp
    release loJson
    release loSbRequestBody
    return
endif

? str(loResp.StatusCode)
? loResp.BodyStr
release loResp


release loHttp
release loJson
release loSbRequestBody

Curl Command

curl -X PUT
	-H "accept: application/json"
	-H "Content-Type: application/json"
	-H "X-Requested-With: ForgeRock Identity Cloud Postman Collection"
	-H "{{cookieName}}: {{adminSSOToken}}"
	-d '{
  "coreOAuth2ClientConfig": {
    "agentgroup": "",
    "status": {
      "inherited": false,
      "value": "Active"
    },
    
    "userpassword": "{{postmanClientSecret}}",
    "clientType": {
      "inherited": false,
      "value": "Confidential"
    },
    "loopbackInterfaceRedirection": {
      "inherited": true,
      "value": true
    },
    "redirectionUris": {
      "inherited": false,
      "value": [
        "https://httpbin.org/anything"
      ]
    },
    "scopes": {
      "inherited": false,
      "value": [
        "write",
        "read",
        "share",
        "print",
        "copy",
        "delete",
        "manage",
        "edit"
      ]
    },
    "defaultScopes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientName": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "authorizationCodeLifetime": {
      "inherited": true,
      "value": 0
    },
    "refreshTokenLifetime": {
      "inherited": true,
      "value": 0
    },
    "accessTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "advancedOAuth2ClientConfig": {
    "name": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "descriptions": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "requestUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "responseTypes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "grantTypes": {
      "inherited": false,
      "value": [
        "authorization_code",
        "implicit",
        "password",
        "client_credentials",
        "refresh_token",
        "urn:ietf:params:oauth:grant-type:uma-ticket",
        "urn:ietf:params:oauth:grant-type:device_code",
        "urn:ietf:params:oauth:grant-type:saml2-bearer",
        "urn:ietf:params:oauth:grant-type:jwt-bearer",
        "urn:openid:params:grant-type:ciba"
      ]
    },
    "contacts": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "tokenEndpointAuthMethod": {
      "inherited": true,
      "value": "string"
    },
    "sectorIdentifierUri": {
      "inherited": true,
      "value": "string"
    },
    "subjectType": {
      "inherited": true,
      "value": "string"
    },
    "updateAccessToken": {
      "inherited": true,
      "value": "string"
    },
    "clientUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "logoUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "policyUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "isConsentImplied": {
      "inherited": true,
      "value": true
    },
    "mixUpMitigation": {
      "inherited": true,
      "value": true
    }
  },
  "coreOpenIDClientConfig": {
    "claims": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "postLogoutRedirectUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientSessionUri": {
      "inherited": true,
      "value": "string"
    },
    "defaultMaxAge": {
      "inherited": true,
      "value": 0
    },
    "defaultMaxAgeEnabled": {
      "inherited": true,
      "value": true
    },
    "defaultAcrValues": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "jwtTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "signEncOAuth2ClientConfig": {
    "jwksUri": {
      "inherited": true,
      "value": "string"
    },
    "jwksCacheTimeout": {
      "inherited": true,
      "value": 0
    },
    "jwkStoreCacheMissCacheTime": {
      "inherited": true,
      "value": 0
    },
    "tokenEndpointAuthSigningAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "jwkSet": {
      "inherited": true,
      "value": "string"
    },
    "idTokenSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionEnabled": {
      "inherited": true,
      "value": true
    },
    "idTokenEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionMethod": {
      "inherited": true,
      "value": "string"
    },
    "idTokenPublicEncryptionKey": {
      "inherited": true,
      "value": "string"
    },
    "clientJwtPublicKey": {
      "inherited": true,
      "value": "string"
    },
    "mTLSTrustedCert": {
      "inherited": true,
      "value": "string"
    },
    "mTLSSubjectDN": {
      "inherited": true,
      "value": "string"
    },
    "mTLSCertificateBoundAccessTokens": {
      "inherited": true,
      "value": true
    },
    "publicKeyLocation": {
      "inherited": true,
      "value": "string"
    },
    "userinfoResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "userinfoSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterSignedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    }
  },
  "coreUmaClientConfig": {
    "claimsRedirectionUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    }
  }
}'
https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanConfidentialClient

Postman Collection Item JSON

{
  "name": "Step 4: Create a Confidential OAuth 2.0 Client",
  "request": {
    "method": "PUT",
    "header": [
      {
        "key": "accept",
        "value": "application/json",
        "type": "text",
        "description": "Specifies certain media types which are acceptable for the resource."
      },
      {
        "key": "Content-Type",
        "value": "application/json",
        "type": "text",
        "description": "The media type of the resource."
      },
      {
        "key": "X-Requested-With",
        "value": "ForgeRock Identity Cloud Postman Collection",
        "type": "text",
        "description": "Custom header."
      },
      {
        "key": "{{cookieName}}",
        "value": "{{adminSSOToken}}",
        "type": "text",
        "description": "SSO token of an administrator. "
      }
    ],
    "body": {
      "mode": "raw",
      "raw": "{\n  \"coreOAuth2ClientConfig\": {\n    \"agentgroup\": \"\",\n    \"status\": {\n      \"inherited\": false,\n      \"value\": \"Active\"\n    },\n    \n    \"userpassword\": \"{{postmanClientSecret}}\",\n    \"clientType\": {\n      \"inherited\": false,\n      \"value\": \"Confidential\"\n    },\n    \"loopbackInterfaceRedirection\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"redirectionUris\": {\n      \"inherited\": false,\n      \"value\": [\n        \"https://httpbin.org/anything\"\n      ]\n    },\n    \"scopes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"write\",\n        \"read\",\n        \"share\",\n        \"print\",\n        \"copy\",\n        \"delete\",\n        \"manage\",\n        \"edit\"\n      ]\n    },\n    \"defaultScopes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientName\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"authorizationCodeLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"refreshTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"accessTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"advancedOAuth2ClientConfig\": {\n    \"name\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"descriptions\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"requestUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"responseTypes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"grantTypes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"authorization_code\",\n        \"implicit\",\n        \"password\",\n        \"client_credentials\",\n        \"refresh_token\",\n        \"urn:ietf:params:oauth:grant-type:uma-ticket\",\n        \"urn:ietf:params:oauth:grant-type:device_code\",\n        \"urn:ietf:params:oauth:grant-type:saml2-bearer\",\n        \"urn:ietf:params:oauth:grant-type:jwt-bearer\",\n        \"urn:openid:params:grant-type:ciba\"\n      ]\n    },\n    \"contacts\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"tokenEndpointAuthMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"sectorIdentifierUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"subjectType\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"updateAccessToken\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"logoUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"policyUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"isConsentImplied\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"mixUpMitigation\": {\n      \"inherited\": true,\n      \"value\": true\n    }\n  },\n  \"coreOpenIDClientConfig\": {\n    \"claims\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"postLogoutRedirectUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientSessionUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"defaultMaxAge\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"defaultMaxAgeEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"defaultAcrValues\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"jwtTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"signEncOAuth2ClientConfig\": {\n    \"jwksUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwksCacheTimeout\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"jwkStoreCacheMissCacheTime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"tokenEndpointAuthSigningAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwkSet\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"idTokenEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenPublicEncryptionKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientJwtPublicKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSTrustedCert\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSSubjectDN\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSCertificateBoundAccessTokens\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"publicKeyLocation\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterSignedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    }\n  },\n  \"coreUmaClientConfig\": {\n    \"claimsRedirectionUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    }\n  }\n}"
    },
    "url": {
      "raw": "{{amUrl}}/json{{realm}}/realm-config/agents/OAuth2Client/{{postmanConfidentialClientId}}",
      "host": [
        "{{amUrl}}"
      ],
      "path": [
        "json{{realm}}",
        "realm-config",
        "agents",
        "OAuth2Client",
        "{{postmanConfidentialClientId}}"
      ]
    },
    "description": "Register a demonstration confidential client, used in the OAuth 2.0 flows section of the collection."
  },
  "response": [
  ]
}