Summary

Creating an App is simple and involves only a couple of steps. Depending on the type of App some settings are mandatory, optional or not supported.

Creating an App

Navigate to the Apps Admin Page and click on Add.
Provide the following information
- Name: The name of the app. In case of OAuth this name will be show on the user (resource owner) consent page.
- Description: The description of the app. In case of OAuth this description will be show on the user (resource owner) consent page.
Depending on wether your application will use OAuth or WS-Federation to connect to The Identity Hub - {tenant} you will have to provide the following parameters.
OAuth
- Token life time: The time a token remains valid after it is created in hours and minutes.
- Redirection Uri: One of more uri that are valid redirect uri for your application (OAuth Client). Place each url on a seperate line.
WS-Federation
- Relying Party Realm: The urn your application (Relying Party) will use to identify itself.
- Reply Uri: One of more valid reply uri for your application (Relying Party). Place each url on a seperate line.
- Relying Party Certificate: The public key of the certificate your application (Relying Party) will use to encrypt the sign-in request.
  
  It is recommended that you aquire and use a specific certificate, only used for this purpose.
- Token Signing Certificate: The public/private key pair of the certiciate The Identity Hub - {tenant} will use to sign the sign-in response (SAML Token).
  
  It is recommended that you aquire and use a specific certificate, only used for this purpose.
For more information on this see How To: Create an App.
Click Save. You will navigate to the detail page of the just created App.

Connecting your application to The Identity Hub

If you are not already on the details page of your App navigate to the Apps Admin Page and click on the App.
Depending on the type of App and protocol you will use a different method of connecting:
- Windows 8.1 Store Apps: see How To: Sign into your Mobile app with The Identity Hub
- Windows Phone 8.1 Apps: see How To: Sign into your Mobile app with The Identity Hub
- iOS Apps: see How To: Sign into your Mobile app with The Identity Hub
- Android Apps: see How To: Sign into your Mobile app with The Identity Hub
- Web Applications: see How To: Sign into your Single Page JavaScript App with The Identity Hub
- ASP.NET Applications: see How To: Sign into your ASP.NET/MVC web site with The Identity Hub (WS-Federation)
- ASP.NET Applications: see How To: Sign into your ASP.NET/MVC web site with The Identity Hub (OAuth 2.0)
- SharePoint 2010/2013: see How To: Sign into your SharePoint 2010/2013 sites with The Identity Hub
Follow the specific guidelines to connect your application.

OAuth Parameters

Parameter Name Required/Optional/Not Supported

Token life time Required

Redirection Uri At least one is required

Parameter Name	Required/Optional/Not Supported
Token life time	Required
Redirection Uri	At least one is required

WS-Federation Parameters

Parameter Name Required/Optional/Not Supported

Relying Party Realm Required

Reply Uri At least one is required.

Relying Party Certificate Optional, but recommended. Not supported for SharePoint.

Token Signing Certificate Required

Parameter Name	Required/Optional/Not Supported
Relying Party Realm	Required
Reply Uri	At least one is required.
Relying Party Certificate	Optional, but recommended. Not supported for SharePoint.
Token Signing Certificate	Required

Related sections