1. Administering Oracle Cloud Identity Management
  2. Managing OAuth Resources and Clients
  3. Registering an Untrusted OAuth Client

Registering an Untrusted OAuth Client

To register a new client, from My Service, go to the OAuth Administration page, and then to the Register Client section.

An OAuth client can be trusted or untrusted. By default, any new OAuth client created in Oracle Cloud is a confidential client (that is, the OAuth client’s credentials are never exposed directly). To create an untrusted client:
  1. Click Register. The Register Client dialog box appears. The * indicates mandatory fields.
  2. In the Name field, specify the name of the client.
  3. In the Description field, provide explanatory information about the OAuth client.
  4. In the Accessible Resources field, select the API resources to which this client should have access. This corresponds with the registered resources at the bottom of the OAuth Configuration page. This is a mandatory field. Select at least one of the listed APIs. If a single API path has more than one scope defined, the scopes are listed below the API path. One or more scopes can be selected for a given API path.
  5. Leave the Trusted check box empty because this client is an untrusted client.
  6. To upload a client certificate for an untrusted client, click Browse next to Load Certificate. This isn’t mandatory.
  7. To register the untrusted OAuth client, click Register.

To learn more about the different fields in a client profile for an OAuth client, see Registering Client Information in OAuth.

A portion of the client profile for the untrusted client previously registered is in the following example. The isTrusted flag has a value of FALSE.

<tenant>dom1</tenant>

<name>test_client_1</name>

<description>Sample untrusted client</description>

<isDisabled>false</isDisabled>

<appId>948bb730-a101-43b9-9497-d3ca33eb8d7f</appId>

<appSecret>948bb730-a101-43b9-9497-d3ca33eb8d7f</appSecret>

<clientType>CONFIDENTIAL_CLIENT</clientType>

<clientMetadata>

<isTrusted>FALSE</isTrusted>

<isTenantManaged>true</isTenantManaged>

</clientMetadata>

<activityData> <createdOn>06/05/2015 02:23:18 </createdOn> </activityData>

<audiences>http://www.example.com</audiences>