Chilkat Online Tools

TCL / ForgeRock Identity Cloud Collection / Step 3: Create Administrative OAuth 2.0 Client

Back to Collection Items

load ./chilkat.dll

# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

set http [new_CkHttp]

# Use this online tool to generate code from sample JSON: Generate Code to Create JSON

# The following JSON is sent in the request body.

# {
#   "coreOAuth2ClientConfig": {
#     "agentgroup": "",
#     "status": {
#       "inherited": false,
#       "value": "Active"
#     },
#     "userpassword": "{{postmanClientSecret}}",
#     "clientType": {
#       "inherited": false,
#       "value": "Confidential"
#     },
#     "loopbackInterfaceRedirection": {
#       "inherited": true,
#       "value": true
#     },
#     "redirectionUris": {
#       "inherited": false,
#       "value": [
#         "https://httpbin.org/anything"
#       ]
#     },
#     "scopes": {
#       "inherited": false,
#       "value": [
#         "fr:idm:*"
#       ]
#     },
#     "defaultScopes": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "clientName": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "authorizationCodeLifetime": {
#       "inherited": true,
#       "value": 0
#     },
#     "refreshTokenLifetime": {
#       "inherited": true,
#       "value": 0
#     },
#     "accessTokenLifetime": {
#       "inherited": true,
#       "value": 0
#     }
#   },
#   "advancedOAuth2ClientConfig": {
#     "name": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "descriptions": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "requestUris": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "responseTypes": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "grantTypes": {
#       "inherited": false,
#       "value": [
#         "password"
#       ]
#     },
#     "contacts": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "tokenEndpointAuthMethod": {
#       "inherited": true,
#       "value": "string"
#     },
#     "sectorIdentifierUri": {
#       "inherited": true,
#       "value": "string"
#     },
#     "subjectType": {
#       "inherited": true,
#       "value": "string"
#     },
#     "updateAccessToken": {
#       "inherited": true,
#       "value": "string"
#     },
#     "clientUri": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "logoUri": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "policyUri": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "isConsentImplied": {
#       "inherited": true,
#       "value": true
#     },
#     "mixUpMitigation": {
#       "inherited": true,
#       "value": true
#     }
#   },
#   "coreOpenIDClientConfig": {
#     "claims": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "postLogoutRedirectUri": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "clientSessionUri": {
#       "inherited": true,
#       "value": "string"
#     },
#     "defaultMaxAge": {
#       "inherited": true,
#       "value": 0
#     },
#     "defaultMaxAgeEnabled": {
#       "inherited": true,
#       "value": true
#     },
#     "defaultAcrValues": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     },
#     "jwtTokenLifetime": {
#       "inherited": true,
#       "value": 0
#     }
#   },
#   "signEncOAuth2ClientConfig": {
#     "jwksUri": {
#       "inherited": true,
#       "value": "string"
#     },
#     "jwksCacheTimeout": {
#       "inherited": true,
#       "value": 0
#     },
#     "jwkStoreCacheMissCacheTime": {
#       "inherited": true,
#       "value": 0
#     },
#     "tokenEndpointAuthSigningAlgorithm": {
#       "inherited": true,
#       "value": "string"
#     },
#     "jwkSet": {
#       "inherited": true,
#       "value": "string"
#     },
#     "idTokenSignedResponseAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "idTokenEncryptionEnabled": {
#       "inherited": true,
#       "value": true
#     },
#     "idTokenEncryptionAlgorithm": {
#       "inherited": true,
#       "value": "string"
#     },
#     "idTokenEncryptionMethod": {
#       "inherited": true,
#       "value": "string"
#     },
#     "idTokenPublicEncryptionKey": {
#       "inherited": true,
#       "value": "string"
#     },
#     "clientJwtPublicKey": {
#       "inherited": true,
#       "value": "string"
#     },
#     "mTLSTrustedCert": {
#       "inherited": true,
#       "value": "string"
#     },
#     "mTLSSubjectDN": {
#       "inherited": true,
#       "value": "string"
#     },
#     "mTLSCertificateBoundAccessTokens": {
#       "inherited": true,
#       "value": true
#     },
#     "publicKeyLocation": {
#       "inherited": true,
#       "value": "string"
#     },
#     "userinfoResponseFormat": {
#       "inherited": true,
#       "value": "string"
#     },
#     "userinfoSignedResponseAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "userinfoEncryptedResponseAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "userinfoEncryptedResponseEncryptionAlgorithm": {
#       "inherited": true,
#       "value": "string"
#     },
#     "requestParameterSignedAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "requestParameterEncryptedAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "requestParameterEncryptedEncryptionAlgorithm": {
#       "inherited": true,
#       "value": "string"
#     },
#     "tokenIntrospectionResponseFormat": {
#       "inherited": true,
#       "value": "string"
#     },
#     "tokenIntrospectionSignedResponseAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "tokenIntrospectionEncryptedResponseAlg": {
#       "inherited": true,
#       "value": "string"
#     },
#     "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
#       "inherited": true,
#       "value": "string"
#     }
#   },
#   "coreUmaClientConfig": {
#     "claimsRedirectionUris": {
#       "inherited": true,
#       "value": [
#         "Unknown Type: any"
#       ]
#     }
#   }
# }

set json [new_CkJsonObject]

CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.agentgroup" ""
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.status.inherited" 0
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.status.value" "Active"
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.userpassword" "{{postmanClientSecret}}"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.clientType.inherited" 0
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.clientType.value" "Confidential"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.loopbackInterfaceRedirection.inherited" 1
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.loopbackInterfaceRedirection.value" 1
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.redirectionUris.inherited" 0
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.redirectionUris.value[0]" "https://httpbin.org/anything"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.scopes.inherited" 0
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.scopes.value[0]" "fr:idm:*"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.defaultScopes.inherited" 1
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.defaultScopes.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.clientName.inherited" 1
CkJsonObject_UpdateString $json "coreOAuth2ClientConfig.clientName.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.authorizationCodeLifetime.inherited" 1
CkJsonObject_UpdateInt $json "coreOAuth2ClientConfig.authorizationCodeLifetime.value" 0
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.refreshTokenLifetime.inherited" 1
CkJsonObject_UpdateInt $json "coreOAuth2ClientConfig.refreshTokenLifetime.value" 0
CkJsonObject_UpdateBool $json "coreOAuth2ClientConfig.accessTokenLifetime.inherited" 1
CkJsonObject_UpdateInt $json "coreOAuth2ClientConfig.accessTokenLifetime.value" 0
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.name.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.name.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.descriptions.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.descriptions.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.requestUris.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.requestUris.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.responseTypes.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.responseTypes.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.grantTypes.inherited" 0
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.grantTypes.value[0]" "password"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.contacts.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.contacts.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.tokenEndpointAuthMethod.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.tokenEndpointAuthMethod.value" "string"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.sectorIdentifierUri.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.sectorIdentifierUri.value" "string"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.subjectType.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.subjectType.value" "string"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.updateAccessToken.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.updateAccessToken.value" "string"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.clientUri.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.clientUri.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.logoUri.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.logoUri.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.policyUri.inherited" 1
CkJsonObject_UpdateString $json "advancedOAuth2ClientConfig.policyUri.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.isConsentImplied.inherited" 1
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.isConsentImplied.value" 1
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.mixUpMitigation.inherited" 1
CkJsonObject_UpdateBool $json "advancedOAuth2ClientConfig.mixUpMitigation.value" 1
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.claims.inherited" 1
CkJsonObject_UpdateString $json "coreOpenIDClientConfig.claims.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.postLogoutRedirectUri.inherited" 1
CkJsonObject_UpdateString $json "coreOpenIDClientConfig.postLogoutRedirectUri.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.clientSessionUri.inherited" 1
CkJsonObject_UpdateString $json "coreOpenIDClientConfig.clientSessionUri.value" "string"
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.defaultMaxAge.inherited" 1
CkJsonObject_UpdateInt $json "coreOpenIDClientConfig.defaultMaxAge.value" 0
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.defaultMaxAgeEnabled.inherited" 1
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.defaultMaxAgeEnabled.value" 1
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.defaultAcrValues.inherited" 1
CkJsonObject_UpdateString $json "coreOpenIDClientConfig.defaultAcrValues.value[0]" "Unknown Type: any"
CkJsonObject_UpdateBool $json "coreOpenIDClientConfig.jwtTokenLifetime.inherited" 1
CkJsonObject_UpdateInt $json "coreOpenIDClientConfig.jwtTokenLifetime.value" 0
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.jwksUri.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.jwksUri.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.jwksCacheTimeout.inherited" 1
CkJsonObject_UpdateInt $json "signEncOAuth2ClientConfig.jwksCacheTimeout.value" 0
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.inherited" 1
CkJsonObject_UpdateInt $json "signEncOAuth2ClientConfig.jwkStoreCacheMissCacheTime.value" 0
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.tokenEndpointAuthSigningAlgorithm.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.jwkSet.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.jwkSet.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenSignedResponseAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.idTokenSignedResponseAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenEncryptionEnabled.inherited" 1
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenEncryptionEnabled.value" 1
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.idTokenEncryptionAlgorithm.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenEncryptionMethod.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.idTokenEncryptionMethod.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.idTokenPublicEncryptionKey.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.clientJwtPublicKey.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.clientJwtPublicKey.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.mTLSTrustedCert.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.mTLSTrustedCert.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.mTLSSubjectDN.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.mTLSSubjectDN.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.inherited" 1
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.mTLSCertificateBoundAccessTokens.value" 1
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.publicKeyLocation.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.publicKeyLocation.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.userinfoResponseFormat.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.userinfoResponseFormat.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.userinfoSignedResponseAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.userinfoSignedResponseAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.userinfoEncryptedResponseAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.userinfoEncryptedResponseEncryptionAlgorithm.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.requestParameterSignedAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.requestParameterSignedAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.requestParameterEncryptedAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.requestParameterEncryptedAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.requestParameterEncryptedEncryptionAlgorithm.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.tokenIntrospectionResponseFormat.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.tokenIntrospectionSignedResponseAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseAlg.value" "string"
CkJsonObject_UpdateBool $json "signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.inherited" 1
CkJsonObject_UpdateString $json "signEncOAuth2ClientConfig.tokenIntrospectionEncryptedResponseEncryptionAlgorithm.value" "string"
CkJsonObject_UpdateBool $json "coreUmaClientConfig.claimsRedirectionUris.inherited" 1
CkJsonObject_UpdateString $json "coreUmaClientConfig.claimsRedirectionUris.value[0]" "Unknown Type: any"

CkHttp_SetRequestHeader $http "accept" "application/json"
CkHttp_SetRequestHeader $http "X-Requested-With" "ForgeRock Identity Cloud Postman Collection"
CkHttp_SetRequestHeader $http "Content-Type" "application/json"
CkHttp_SetRequestHeader $http "{{cookieName}}" "{{adminSSOToken}}"

set sbRequestBody [new_CkStringBuilder]

CkJsonObject_EmitSb $json $sbRequestBody

# resp is a CkHttpResponse
set resp [CkHttp_PTextSb $http "PUT" "https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanAdminClient" $sbRequestBody "utf-8" "application/json" 0 0]
if {[CkHttp_get_LastMethodSuccess $http] == 0} then {
    puts [CkHttp_lastErrorText $http]
    delete_CkHttp $http
    delete_CkJsonObject $json
    delete_CkStringBuilder $sbRequestBody
    exit
}

puts [CkHttpResponse_get_StatusCode $resp]
puts [CkHttpResponse_bodyStr $resp]
delete_CkHttpResponse $resp


delete_CkHttp $http
delete_CkJsonObject $json
delete_CkStringBuilder $sbRequestBody

Curl Command

curl -X PUT
	-H "accept: application/json"
	-H "Content-Type: application/json"
	-H "X-Requested-With: ForgeRock Identity Cloud Postman Collection"
	-H "{{cookieName}}: {{adminSSOToken}}"
	-d '{
  "coreOAuth2ClientConfig": {
    "agentgroup": "",
    "status": {
      "inherited": false,
      "value": "Active"
    },
    
    "userpassword": "{{postmanClientSecret}}",
    "clientType": {
      "inherited": false,
      "value": "Confidential"
    },
    "loopbackInterfaceRedirection": {
      "inherited": true,
      "value": true
    },
    "redirectionUris": {
      "inherited": false,
      "value": [
        "https://httpbin.org/anything"
      ]
    },
    "scopes": {
      "inherited": false,
      "value": [
        "fr:idm:*"
      ]
    },
    "defaultScopes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientName": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "authorizationCodeLifetime": {
      "inherited": true,
      "value": 0
    },
    "refreshTokenLifetime": {
      "inherited": true,
      "value": 0
    },
    "accessTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "advancedOAuth2ClientConfig": {
    "name": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "descriptions": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "requestUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "responseTypes": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "grantTypes": {
      "inherited": false,
      "value": [
        "password"
      ]
    },
    "contacts": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "tokenEndpointAuthMethod": {
      "inherited": true,
      "value": "string"
    },
    "sectorIdentifierUri": {
      "inherited": true,
      "value": "string"
    },
    "subjectType": {
      "inherited": true,
      "value": "string"
    },
    "updateAccessToken": {
      "inherited": true,
      "value": "string"
    },
    "clientUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "logoUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "policyUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "isConsentImplied": {
      "inherited": true,
      "value": true
    },
    "mixUpMitigation": {
      "inherited": true,
      "value": true
    }
  },
  "coreOpenIDClientConfig": {
    "claims": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "postLogoutRedirectUri": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "clientSessionUri": {
      "inherited": true,
      "value": "string"
    },
    "defaultMaxAge": {
      "inherited": true,
      "value": 0
    },
    "defaultMaxAgeEnabled": {
      "inherited": true,
      "value": true
    },
    "defaultAcrValues": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    },
    "jwtTokenLifetime": {
      "inherited": true,
      "value": 0
    }
  },
  "signEncOAuth2ClientConfig": {
    "jwksUri": {
      "inherited": true,
      "value": "string"
    },
    "jwksCacheTimeout": {
      "inherited": true,
      "value": 0
    },
    "jwkStoreCacheMissCacheTime": {
      "inherited": true,
      "value": 0
    },
    "tokenEndpointAuthSigningAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "jwkSet": {
      "inherited": true,
      "value": "string"
    },
    "idTokenSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionEnabled": {
      "inherited": true,
      "value": true
    },
    "idTokenEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "idTokenEncryptionMethod": {
      "inherited": true,
      "value": "string"
    },
    "idTokenPublicEncryptionKey": {
      "inherited": true,
      "value": "string"
    },
    "clientJwtPublicKey": {
      "inherited": true,
      "value": "string"
    },
    "mTLSTrustedCert": {
      "inherited": true,
      "value": "string"
    },
    "mTLSSubjectDN": {
      "inherited": true,
      "value": "string"
    },
    "mTLSCertificateBoundAccessTokens": {
      "inherited": true,
      "value": true
    },
    "publicKeyLocation": {
      "inherited": true,
      "value": "string"
    },
    "userinfoResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "userinfoSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "userinfoEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterSignedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedAlg": {
      "inherited": true,
      "value": "string"
    },
    "requestParameterEncryptedEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionResponseFormat": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionSignedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseAlg": {
      "inherited": true,
      "value": "string"
    },
    "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {
      "inherited": true,
      "value": "string"
    }
  },
  "coreUmaClientConfig": {
    "claimsRedirectionUris": {
      "inherited": true,
      "value": [
        "Unknown Type: any"
      ]
    }
  }
}'
https://<tenant-name>.forgeblocks.com/am/json/realms/root/realms/alpha/realm-config/agents/OAuth2Client/postmanAdminClient

Postman Collection Item JSON

{
  "name": "Step 3: Create Administrative OAuth 2.0 Client",
  "request": {
    "method": "PUT",
    "header": [
      {
        "description": "Specifies certain media types which are acceptable for the resource.",
        "key": "accept",
        "type": "text",
        "value": "application/json"
      },
      {
        "description": "The media type of the resource.",
        "key": "Content-Type",
        "type": "text",
        "value": "application/json"
      },
      {
        "description": "Custom header.",
        "key": "X-Requested-With",
        "type": "text",
        "value": "ForgeRock Identity Cloud Postman Collection"
      },
      {
        "description": "SSO token of an administrator. ",
        "key": "{{cookieName}}",
        "type": "text",
        "value": "{{adminSSOToken}}"
      }
    ],
    "body": {
      "mode": "raw",
      "raw": "{\n  \"coreOAuth2ClientConfig\": {\n    \"agentgroup\": \"\",\n    \"status\": {\n      \"inherited\": false,\n      \"value\": \"Active\"\n    },\n    \n    \"userpassword\": \"{{postmanClientSecret}}\",\n    \"clientType\": {\n      \"inherited\": false,\n      \"value\": \"Confidential\"\n    },\n    \"loopbackInterfaceRedirection\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"redirectionUris\": {\n      \"inherited\": false,\n      \"value\": [\n        \"https://httpbin.org/anything\"\n      ]\n    },\n    \"scopes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"fr:idm:*\"\n      ]\n    },\n    \"defaultScopes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientName\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"authorizationCodeLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"refreshTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"accessTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"advancedOAuth2ClientConfig\": {\n    \"name\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"descriptions\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"requestUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"responseTypes\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"grantTypes\": {\n      \"inherited\": false,\n      \"value\": [\n        \"password\"\n      ]\n    },\n    \"contacts\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"tokenEndpointAuthMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"sectorIdentifierUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"subjectType\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"updateAccessToken\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"logoUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"policyUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"isConsentImplied\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"mixUpMitigation\": {\n      \"inherited\": true,\n      \"value\": true\n    }\n  },\n  \"coreOpenIDClientConfig\": {\n    \"claims\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"postLogoutRedirectUri\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"clientSessionUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"defaultMaxAge\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"defaultMaxAgeEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"defaultAcrValues\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    },\n    \"jwtTokenLifetime\": {\n      \"inherited\": true,\n      \"value\": 0\n    }\n  },\n  \"signEncOAuth2ClientConfig\": {\n    \"jwksUri\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwksCacheTimeout\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"jwkStoreCacheMissCacheTime\": {\n      \"inherited\": true,\n      \"value\": 0\n    },\n    \"tokenEndpointAuthSigningAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"jwkSet\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionEnabled\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"idTokenEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenEncryptionMethod\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"idTokenPublicEncryptionKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"clientJwtPublicKey\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSTrustedCert\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSSubjectDN\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"mTLSCertificateBoundAccessTokens\": {\n      \"inherited\": true,\n      \"value\": true\n    },\n    \"publicKeyLocation\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"userinfoEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterSignedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"requestParameterEncryptedEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionResponseFormat\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionSignedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseAlg\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    },\n    \"tokenIntrospectionEncryptedResponseEncryptionAlgorithm\": {\n      \"inherited\": true,\n      \"value\": \"string\"\n    }\n  },\n  \"coreUmaClientConfig\": {\n    \"claimsRedirectionUris\": {\n      \"inherited\": true,\n      \"value\": [\n        \"Unknown Type: any\"\n      ]\n    }\n  }\n}"
    },
    "url": {
      "raw": "{{amUrl}}/json{{realm}}/realm-config/agents/OAuth2Client/{{postmanAdminClientId}}",
      "host": [
        "{{amUrl}}"
      ],
      "path": [
        "json{{realm}}",
        "realm-config",
        "agents",
        "OAuth2Client",
        "{{postmanAdminClientId}}"
      ]
    },
    "description": "Create an OAuth 2.0 client for obtaining scopes as an administrator. The access tokens granted by this client are used to perform administrative tasks throughout this collection."
  },
  "response": [
  ]
}