search

OAuth2 credentials

How to obtain your Lemonade's OAuth2 client credentials

We provide two ways to obtain your Lemonade's OAuth2 client credentials:

hashtag
Using GraphQL API endpoints to obtain OAuth2 credentials

The following endpoints require user authentication. Please include your session token in x-ory-kratos-session header of the request. You can find this token by inspecting the cookie of your network requests to Lemonade backend API.

  • for staging environment, the name of the cookie is: ory_kratos_session_staging

  • for production environment, the name of the cookie is: ory_kratos_session

hashtag
To create OAuth2 credentials

mutation($input: Oauth2ClientInput!) {
  createOauth2Client(input: $input) {
    client_id
    client_secret
  }
}

Important note: Please include the client_secret field in the response and take note of it because this is the only time we display it to you. Further requests to retrieve the client info will not return this value.

hashtag
To retrieve OAuth2 credentials

If you want to retrieve a specified OAuth2 client, supply its id in the optional ids params. Omit this param to obtain all the OAuth2 clients that are belong to you.

hashtag
To update OAuth2 credentials

For possible update fields, please refer to our GraphQL API introspection playground.

hashtag
To remove OAuth2 credentials

hashtag
OAuth2 client default settings

The following properties are prefilled with any OAuth2 clients and cannot be updated:

  • grant_types: ['authorization_code', 'refresh_token', 'client_credentials']

  • scope: 'offline_access offline openid audience'

  • audience: [id of the user who request the client creation]

  • token_endpoint_auth_method: 'client_secret_post'

PreviousAuth2.0NextIntegration Guide

Last updated