Skip to main content

Client Management

The Client Management section is where you register and configure the OIDC client applications that will use Visual Passcodes for authentication.

Client Management View

The main view displays a table of all registered clients with the following information:

  • Name: The human-readable name of the application.
  • Client ID: The public identifier for the client, used in the OIDC flow.
  • Type: The client type, either confidential for backend applications or public for browser-based and mobile apps.
  • Redirect URI: The URL that Visual Passcodes is allowed to redirect to after authentication.
  • Is Locked: A status indicating if the client is locked and cannot be deleted.
  • Secret: The client secret, issued only to confidential clients.
  • Actions: Edit or delete the client configuration.

Creating a New Client

Click the + Add Client button to register a new application. This will open a comprehensive form for the client's OIDC configuration.

Create New Client Form

Key configuration fields include:

  • Name: A friendly name for your application.
  • Client ID: The unique identifier for this client.
  • Redirect URIs: One or more callback URLs that Visual Passcodes can redirect to after successful authentication. These must be absolute URLs and are specified one per line.
  • Post Logout Redirect URIs: One or more URLs where users will be redirected after logging out. Must be absolute URLs, specified one per line.
  • Self-Register Enable: A toggle to allow users to register themselves via this client's authentication flow.
  • Lock (prevent delete): A toggle to prevent accidental deletion of the client.
  • Client Type: Select whether the client is Confidential (server-side applications that can securely store secrets) or Public (browser-based or mobile apps that cannot keep secrets confidential).
  • Algorithm: The signing algorithm used for tokens. Select the appropriate algorithm for your security requirements.
  • Logo URL: Optional URL to your application's logo, displayed during the authentication flow.
  • Privacy Policy: Optional URL to your application's privacy policy.
  • Terms of Service: Optional URL to your application's terms of service.
  • User Agreement: Optional URL to your user agreement document.
  • Client Base URL: Optional base URL for your client application.
  • Client Logout URL: Optional URL where logout requests should be sent.
  • Special Flow: Configure special authentication flows if needed:
    • Flow Type: Select "No special flow" for standard OIDC flows, or configure a specific flow type for custom requirements.
    • Issuer URL: Required when using special flows to specify the token issuer.