Chilkat Online Tools

phpAx / ForgeRock Identity Cloud Collection / Step 3: Create Administrative OAuth 2.0 Client

Back to Collection Items

<?php

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.Http')
$http = new COM("Chilkat.Http");

// Use this online tool to generate code from sample JSON: Generate Code to Create JSON

// The following JSON is sent in the request body.

// {
//   "coreOAuth2ClientConfig": {
//     "agentgroup": "",
//     "status": {
//       "inherited": false,
//       "value": "Active"
//     },
//     "userpassword": "{{postmanClientSecret}}",
//     "clientType": {
//       "inherited": false,
//       "value": "Confidential"
//     },
//     "loopbackInterfaceRedirection": {
//       "inherited": true,
//       "value": true
//     },
//     "redirectionUris": {
//       "inherited": false,
//       "value": [
//         "https://httpbin.org/anything"
//       ]
//     },
//     "scopes": {
//       "inherited": false,
//       "value": [
//         "fr:idm:*"
//       ]
//     },
//     "defaultScopes": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "clientName": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "authorizationCodeLifetime": {
//       "inherited": true,
//       "value": 0
//     },
//     "refreshTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     },
//     "accessTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     }
//   },
//   "advancedOAuth2ClientConfig": {
//     "name": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "descriptions": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "requestUris": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "responseTypes": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "grantTypes": {
//       "inherited": false,
//       "value": [
//         "password"
//       ]
//     },
//     "contacts": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "tokenEndpointAuthMethod": {
//       "inherited": true,
//       "value": "string"
//     },
//     "sectorIdentifierUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "subjectType": {
//       "inherited": true,
//       "value": "string"
//     },
//     "updateAccessToken": {
//       "inherited": true,
//       "value": "string"
//     },
//     "clientUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "logoUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "policyUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "isConsentImplied": {
//       "inherited": true,
//       "value": true
//     },
//     "mixUpMitigation": {
//       "inherited": true,
//       "value": true
//     }
//   },
//   "coreOpenIDClientConfig": {
//     "claims": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "postLogoutRedirectUri": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "clientSessionUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "defaultMaxAge": {
//       "inherited": true,
//       "value": 0
//     },
//     "defaultMaxAgeEnabled": {
//       "inherited": true,
//       "value": true
//     },
//     "defaultAcrValues": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     },
//     "jwtTokenLifetime": {
//       "inherited": true,
//       "value": 0
//     }
//   },
//   "signEncOAuth2ClientConfig": {
//     "jwksUri": {
//       "inherited": true,
//       "value": "string"
//     },
//     "jwksCacheTimeout": {
//       "inherited": true,
//       "value": 0
//     },
//     "jwkStoreCacheMissCacheTime": {
//       "inherited": true,
//       "value": 0
//     },
//     "tokenEndpointAuthSigningAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "jwkSet": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenEncryptionEnabled": {
//       "inherited": true,
//       "value": true
//     },
//     "idTokenEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenEncryptionMethod": {
//       "inherited": true,
//       "value": "string"
//     },
//     "idTokenPublicEncryptionKey": {
//       "inherited": true,
//       "value": "string"
//     },
//     "clientJwtPublicKey": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSTrustedCert": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSSubjectDN": {
//       "inherited": true,
//       "value": "string"
//     },
//     "mTLSCertificateBoundAccessTokens": {
//       "inherited": true,
//       "value": true
//     },
//     "publicKeyLocation": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoResponseFormat": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoEncryptedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "userinfoEncryptedResponseEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterSignedAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterEncryptedAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "requestParameterEncryptedEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionResponseFormat": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionSignedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionEncryptedResponseAlg": {
//       "inherited": true,
//       "value": "string"
//     },
//     "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
//       "inherited": true,
//       "value": "string"
//     }
//   },
//   "coreUmaClientConfig": {
//     "claimsRedirectionUris": {
//       "inherited": true,
//       "value": [
//         "Unknown Type: any"
//       ]
//     }
//   }
// }

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.JsonObject')
$json = new COM("Chilkat.JsonObject");
$json->UpdateString('coreOAuth2ClientConfig.agentgroup','');
$json->UpdateBool('coreOAuth2ClientConfig.status.inherited',0);
$json->UpdateString('coreOAuth2ClientConfig.status.value','Active');
$json->UpdateString('coreOAuth2ClientConfig.userpassword','{{postmanClientSecret}}');
$json->UpdateBool('coreOAuth2ClientConfig.clientType.inherited',0);
$json->UpdateString('coreOAuth2ClientConfig.clientType.value','Confidential');
$json->UpdateBool('coreOAuth2ClientConfig.loopbackInterfaceRedirection.inherited',1);
$json->UpdateBool('coreOAuth2ClientConfig.loopbackInterfaceRedirection.value',1);
$json->UpdateBool('coreOAuth2ClientConfig.redirectionUris.inherited',0);
$json->UpdateString('coreOAuth2ClientConfig.redirectionUris.value[0]','https://httpbin.org/anything');
$json->UpdateBool('coreOAuth2ClientConfig.scopes.inherited',0);
$json->UpdateString('coreOAuth2ClientConfig.scopes.value[0]','fr:idm:*');
$json->UpdateBool('coreOAuth2ClientConfig.defaultScopes.inherited',1);
$json->UpdateString('coreOAuth2ClientConfig.defaultScopes.value[0]','Unknown Type: any');
$json->UpdateBool('coreOAuth2ClientConfig.clientName.inherited',1);
$json->UpdateString('coreOAuth2ClientConfig.clientName.value[0]','Unknown Type: any');
$json->UpdateBool('coreOAuth2ClientConfig.authorizationCodeLifetime.inherited',1);
$json->UpdateInt('coreOAuth2ClientConfig.authorizationCodeLifetime.value',0);
$json->UpdateBool('coreOAuth2ClientConfig.refreshTokenLifetime.inherited',1);
$json->UpdateInt('coreOAuth2ClientConfig.refreshTokenLifetime.value',0);
$json->UpdateBool('coreOAuth2ClientConfig.accessTokenLifetime.inherited',1);
$json->UpdateInt('coreOAuth2ClientConfig.accessTokenLifetime.value',0);
$json->UpdateBool('advancedOAuth2ClientConfig.name.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.name.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.descriptions.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.descriptions.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.requestUris.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.requestUris.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.responseTypes.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.responseTypes.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.grantTypes.inherited',0);
$json->UpdateString('advancedOAuth2ClientConfig.grantTypes.value[0]','password');
$json->UpdateBool('advancedOAuth2ClientConfig.contacts.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.contacts.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.tokenEndpointAuthMethod.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.tokenEndpointAuthMethod.value','string');
$json->UpdateBool('advancedOAuth2ClientConfig.sectorIdentifierUri.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.sectorIdentifierUri.value','string');
$json->UpdateBool('advancedOAuth2ClientConfig.subjectType.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.subjectType.value','string');
$json->UpdateBool('advancedOAuth2ClientConfig.updateAccessToken.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.updateAccessToken.value','string');
$json->UpdateBool('advancedOAuth2ClientConfig.clientUri.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.clientUri.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.logoUri.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.logoUri.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.policyUri.inherited',1);
$json->UpdateString('advancedOAuth2ClientConfig.policyUri.value[0]','Unknown Type: any');
$json->UpdateBool('advancedOAuth2ClientConfig.isConsentImplied.inherited',1);
$json->UpdateBool('advancedOAuth2ClientConfig.isConsentImplied.value',1);
$json->UpdateBool('advancedOAuth2ClientConfig.mixUpMitigation.inherited',1);
$json->UpdateBool('advancedOAuth2ClientConfig.mixUpMitigation.value',1);
$json->UpdateBool('coreOpenIDClientConfig.claims.inherited',1);
$json->UpdateString('coreOpenIDClientConfig.claims.value[0]','Unknown Type: any');
$json->UpdateBool('coreOpenIDClientConfig.postLogoutRedirectUri.inherited',1);
$json->UpdateString('coreOpenIDClientConfig.postLogoutRedirectUri.value[0]','Unknown Type: any');
$json->UpdateBool('coreOpenIDClientConfig.clientSessionUri.inherited',1);
$json->UpdateString('coreOpenIDClientConfig.clientSessionUri.value','string');
$json->UpdateBool('coreOpenIDClientConfig.defaultMaxAge.inherited',1);
$json->UpdateInt('coreOpenIDClientConfig.defaultMaxAge.value',0);
$json->UpdateBool('coreOpenIDClientConfig.defaultMaxAgeEnabled.inherited',1);
$json->UpdateBool('coreOpenIDClientConfig.defaultMaxAgeEnabled.value',1);
$json->UpdateBool('coreOpenIDClientConfig.defaultAcrValues.inherited',1);
$json->UpdateString('coreOpenIDClientConfig.defaultAcrValues.value[0]','Unknown Type: any');
$json->UpdateBool('coreOpenIDClientConfig.jwtTokenLifetime.inherited',1);
$json->UpdateInt('coreOpenIDClientConfig.jwtTokenLifetime.value',0);
$json->UpdateBool('signEncOAuth2ClientConfig.jwksUri.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.jwksUri.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.jwksCacheTimeout.inherited',1);
$json->UpdateInt('signEncOAuth2ClientConfig.jwksCacheTimeout.value',0);
$json->UpdateBool('signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.inherited',1);
$json->UpdateInt('signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.value',0);
$json->UpdateBool('signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.jwkSet.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.jwkSet.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenSignedResponseAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.idTokenSignedResponseAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenEncryptionEnabled.inherited',1);
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenEncryptionEnabled.value',1);
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenEncryptionMethod.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.idTokenEncryptionMethod.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.clientJwtPublicKey.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.clientJwtPublicKey.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.mTLSTrustedCert.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.mTLSTrustedCert.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.mTLSSubjectDN.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.mTLSSubjectDN.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.inherited',1);
$json->UpdateBool('signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.value',1);
$json->UpdateBool('signEncOAuth2ClientConfig.publicKeyLocation.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.publicKeyLocation.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.userinfoResponseFormat.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.userinfoResponseFormat.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.userinfoSignedResponseAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.userinfoSignedResponseAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.requestParameterSignedAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.requestParameterSignedAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.requestParameterEncryptedAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.requestParameterEncryptedAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.value','string');
$json->UpdateBool('signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.inherited',1);
$json->UpdateString('signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.value','string');
$json->UpdateBool('coreUmaClientConfig.claimsRedirectionUris.inherited',1);
$json->UpdateString('coreUmaClientConfig.claimsRedirectionUris.value[0]','Unknown Type: any');

$http->SetRequestHeader('accept','application/json');
$http->SetRequestHeader('X-Requested-With','ForgeRock Identity Cloud Postman Collection');
$http->SetRequestHeader('Content-Type','application/json');
$http->SetRequestHeader('{{cookieName}}','{{adminSSOToken}}');

// For versions of Chilkat < 10.0.0, use new COM('Chilkat_9_5_0.Chilkat.StringBuilder')
$sbRequestBody = new COM("Chilkat.StringBuilder");
$json->EmitSb($sbRequestBody);

// resp is a Chilkat.HttpResponse
$resp = $http->PTextSb('PUT','https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanAdminClient',$sbRequestBody,'utf-8','application/json',0,0);
if ($http->LastMethodSuccess == 0) {
    print $http->LastErrorText . "\n";
    exit;
}

print $resp->StatusCode . "\n";
print $resp->BodyStr . "\n";


?>

Curl Command

curl -X PUT
	-H "accept: application/json"
	-H "Content-Type: application/json"
	-H "X-Requested-With: ForgeRock Identity Cloud Postman Collection"
	-H "{{cookieName}}: {{adminSSOToken}}"
	-d '{
  "coreOAuth2ClientConfig": {
    "agentgroup": "",
    "status": {
      "inherited": false,
      "value": "Active"
    },
    
    "userpassword": "{{postmanClientSecret}}",
    "clientType": {
      "inherited": false,
      "value": "Confidential"
    },
    "loopbackInterfaceRedirection": {
      "inherited": true,
      "value": true
    },
    "redirectionUris": {
      "inherited": false,
      "value": [
        "https://httpbin.org/anything"
      ]
    },
    "scopes": {
      "inherited": false,
      "value": [
        "fr:idm:*"
      ]
    },
    "defaultScopes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientName": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "authorizationCodeLifetime": {
      "inherited": true,
      "value": 0
    },
    "refreshTokenLifetime": {
      "inherited": true,
      "value": 0
    },
    "accessTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "advancedOAuth2ClientConfig": {
    "name": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "descriptions": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "requestUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "responseTypes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "grantTypes": {
      "inherited": false,
      "value": [
        "password"
      ]
    },
    "contacts": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "tokenEndpointAuthMethod": {
      "inherited": true,
      "value": "string"
    },
    "sectorIdentifierUri": {
      "inherited": true,
      "value": "string"
    },
    "subjectType": {
      "inherited": true,
      "value": "string"
    },
    "updateAccessToken": {
      "inherited": true,
      "value": "string"
    },
    "clientUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "logoUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "policyUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "isConsentImplied": {
      "inherited": true,
      "value": true
    },
    "mixUpMitigation": {
      "inherited": true,
      "value": true
    }
  },
  "coreOpenIDClientConfig": {
    "claims": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "postLogoutRedirectUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientSessionUri": {
      "inherited": true,
      "value": "string"
    },
    "defaultMaxAge": {
      "inherited": true,
      "value": 0
    },
    "defaultMaxAgeEnabled": {
      "inherited": true,
      "value": true
    },
    "defaultAcrValues": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "jwtTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "signEncOAuth2ClientConfig": {
    "jwksUri": {
      "inherited": true,
      "value": "string"
    },
    "jwksCacheTimeout": {
      "inherited": true,
      "value": 0
    },
    "jwkStoreCacheMissCacheTime": {
      "inherited": true,
      "value": 0
    },
    "tokenEndpointAuthSigningAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "jwkSet": {
      "inherited": true,
      "value": "string"
    },
    "idTokenSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionEnabled": {
      "inherited": true,
      "value": true
    },
    "idTokenEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionMethod": {
      "inherited": true,
      "value": "string"
    },
    "idTokenPublicEncryptionKey": {
      "inherited": true,
      "value": "string"
    },
    "clientJwtPublicKey": {
      "inherited": true,
      "value": "string"
    },
    "mTLSTrustedCert": {
      "inherited": true,
      "value": "string"
    },
    "mTLSSubjectDN": {
      "inherited": true,
      "value": "string"
    },
    "mTLSCertificateBoundAccessTokens": {
      "inherited": true,
      "value": true
    },
    "publicKeyLocation": {
      "inherited": true,
      "value": "string"
    },
    "userinfoResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "userinfoSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterSignedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    }
  },
  "coreUmaClientConfig": {
    "claimsRedirectionUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    }
  }
}'
https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanAdminClient

Postman Collection Item JSON

{
  "name": "Step 3: Create Administrative OAuth 2.0 Client",
  "request": {
    "method": "PUT",
    "header": [
      {
        "description": "Specifies certain media types which are acceptable for the resource.",
        "key": "accept",
        "type": "text",
        "value": "application/json"
      },
      {
        "description": "The media type of the resource.",
        "key": "Content-Type",
        "type": "text",
        "value": "application/json"
      },
      {
        "description": "Custom header.",
        "key": "X-Requested-With",
        "type": "text",
        "value": "ForgeRock Identity Cloud Postman Collection"
      },
      {
        "description": "SSO token of an administrator. ",
        "key": "{{cookieName}}",
        "type": "text",
        "value": "{{adminSSOToken}}"
      }
    ],
    "body": {
      "mode": "raw",
      "raw": "{\n  \"coreOAuth2ClientConfig\": {\n    \"agentgroup\": \"\",\n    \"status\": {\n      \"inherited\": false,\n      \"value\": \"Active\"\n    },\n    \n    \"userpassword\": \"{{postmanClientSecret}}\",\n    \"clientType\": {\n      \"inherited\": false,\n      \"value\": \"Confidential\"\n    },\n    \"loopbackInterfaceRedirection\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"redirectionUris\": {\n      \"inherited\": false,\n      \"value\": [\n        \"https://httpbin.org/anything\"\n      ]\n    },\n    \"scopes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"fr:idm:*\"\n      ]\n    },\n    \"defaultScopes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientName\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"authorizationCodeLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"refreshTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"accessTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"advancedOAuth2ClientConfig\": {\n    \"name\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"descriptions\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"requestUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"responseTypes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"grantTypes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"password\"\n      ]\n    },\n    \"contacts\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"tokenEndpointAuthMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"sectorIdentifierUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"subjectType\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"updateAccessToken\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"logoUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"policyUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"isConsentImplied\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"mixUpMitigation\": {\n      \"inherited\": true,\n      \"value\": true\n    }\n  },\n  \"coreOpenIDClientConfig\": {\n    \"claims\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"postLogoutRedirectUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientSessionUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"defaultMaxAge\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"defaultMaxAgeEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"defaultAcrValues\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"jwtTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"signEncOAuth2ClientConfig\": {\n    \"jwksUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwksCacheTimeout\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"jwkStoreCacheMissCacheTime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"tokenEndpointAuthSigningAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwkSet\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"idTokenEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenPublicEncryptionKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientJwtPublicKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSTrustedCert\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSSubjectDN\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSCertificateBoundAccessTokens\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"publicKeyLocation\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterSignedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    }\n  },\n  \"coreUmaClientConfig\": {\n    \"claimsRedirectionUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    }\n  }\n}"
    },
    "url": {
      "raw": "{{amUrl}}/json{{realm}}/realm-config/agents/OAuth2Client/{{postmanAdminClientId}}",
      "host": [
        "{{amUrl}}"
      ],
      "path": [
        "json{{realm}}",
        "realm-config",
        "agents",
        "OAuth2Client",
        "{{postmanAdminClientId}}"
      ]
    },
    "description": "Create an OAuth 2.0 client for obtaining scopes as an administrator. The access tokens granted by this client are used to perform administrative tasks throughout this collection."
  },
  "response": [
  ]
}