Name of this client (min length: 1 character, does not allow < or >).
OptionaldescriptionFree text description of this client (max length: 140 characters).
Optionallogo_URL of the logo to display for this client. Recommended size is 150x150 pixels.
OptionalcallbacksComma-separated list of URLs whitelisted for Auth0 to use as a callback to the client after authentication.
Optionaloidc_Optionaloidc_Optionalsession_Optionalallowed_Comma-separated list of URLs allowed to make requests from JavaScript to Auth0 API (typically used with CORS). By default, all your callback URLs will be allowed. This field allows you to enter other origins if necessary. You can also use wildcards at the subdomain level (e.g., https://*.contoso.com). Query strings and hash information are not taken into account when validating these URLs.
Optionalweb_Comma-separated list of allowed origins for use with Cross-Origin Authentication, Device Flow, and web message response mode.
Optionalclient_List of audiences/realms for SAML protocol. Used by the wsfed addon.
Optionalallowed_List of allow clients and API ids that are allowed to make delegation requests. Empty means all all your clients are allowed.
Optionalallowed_Comma-separated list of URLs that are valid to redirect to after logout from Auth0. Wildcards are allowed for subdomains.
Optionalgrant_List of grant types supported for this application. Can include authorization_code, implicit, refresh_token, client_credentials, password, http://auth0.com/oauth/grant-type/password-realm, http://auth0.com/oauth/grant-type/mfa-oob, http://auth0.com/oauth/grant-type/mfa-otp, http://auth0.com/oauth/grant-type/mfa-recovery-code, urn:openid:params:grant-type:ciba, urn:ietf:params:oauth:grant-type:device_code, and urn:auth0:params:oauth:grant-type:token-exchange:federated-connection-access-token.
Optionaltoken_Optionalapp_Optionalis_Whether this client a first party client or not
Optionaloidc_Whether this client conforms to strict OIDC specifications (true) or uses legacy features (false).
Optionaljwt_Optionalencryption_OptionalssoApplies only to SSO clients and determines whether Auth0 will handle Single Sign On (true) or whether the Identity Provider will (false).
Optionalcross_Whether this client can be used to make cross-origin authentication requests (true) or it is not allowed to make such requests (false).
Optionalcross_URL of the location in your site where the cross origin verification takes place for the cross-origin auth flow when performing Auth in your own domain instead of Auth0 hosted login page.
Optionalsso_true to disable Single Sign On, false otherwise (default: false)
Optionalcustom_true if the custom login page is to be used, false otherwise. Defaults to true
Optionalcustom_The content (HTML, CSS, JS) of the custom login page.
Optionalcustom_The content (HTML, CSS, JS) of the custom login page. (Used on Previews)
Optionalform_HTML form template to be used for WS-Federation.
OptionaladdonsOptionalclient_OptionalmobileOptionalinitiate_Initiate login uri, must be https
Optionalnative_Optionalrefresh_Optionaldefault_Optionalorganization_Optionalorganization_Optionalorganization_Defines the available methods for organization discovery during the pre_login_prompt. Users can discover their organization either by email, organization_name or both.
Optionalclient_Optionalrequire_Makes the use of Pushed Authorization Requests mandatory for this client
Optionalrequire_Makes the use of Proof-of-Possession mandatory for this client
Optionalsigned_Optionalcompliance_Optionalpar_Specifies how long, in seconds, a Pushed Authorization Request URI remains valid
Optionaltoken_Optionalresource_The identifier of the resource server that this client is linked to.
Optionalmy_
Example