Client Setup

Client setup

To set up a client, the user must provide:

• Basic information about the client

• Select Verifiable Credential templates

• Configure branding

• Copy client auth credentials

Clients can be deactivated and later reactivated. A client can be deactivated indefinitely and can only be reactivated if account limits allow for additional active clients.

Clients can also be deleted and restored for up to 20 days after deletion. After that, the client and all associated data is permanently deleted.

Basic Client Information

• Client name: The client name that will be presented to end users.

• Allowed Callback URLs: A list of URLs that SSO can redirect to during the authorization process. When a client requests authorization it must provide one of the URL's from the list. If it does not then the request for authorization will be rejected. Requires the use of https .

Verifiable Credential Template Selection

A list of available template definitions, where up to 5 can be selected. This are the definitions for one of which the end-user will have to present a Verifiable Credential during verification. Which definition will be asked of the user is decided by the client service, when preparing the authorization request for the user.

Branding

• Logo: a logo for the client

• Primary Colour: clients primary brand color

Client Authentication Credentials

These are client credentials with which the client will authenticate in the authorization flow. The ID and secret are passed like username and password are in a HTTP Basic Authentication Scheme format.

• Client ID: A unique SSO generated identifier of the client

• Client Secret: A secret token string generated for this client. Acts as a password used with the /token endpoint

Copy and store the secret securely. If lost it will have to be regenerated.