How To: Create an App

Summary

Creating an App is simple and involves only a couple of steps. Depending on the type of App some settings are mandatory, optional or not supported.

Creating an App

  • Navigate to the Apps Admin Page and click on Add.

  • Provide the following information
    • Name: The name of the app. In case of OAuth this name will be show on the user (resource owner) consent page.

    • Description: The description of the app. In case of OAuth this description will be show on the user (resource owner) consent page.

  • Depending on wether your application will use OAuth or WS-Federation to connect to The Identity Hub - {tenant} you will have to provide the following parameters.

    OAuth

    • Token life time: The time a token remains valid after it is created in hours and minutes.

    • Redirection Uri: One of more uri that are valid redirect uri for your application (OAuth Client). Place each url on a seperate line.

    WS-Federation

    • Relying Party Realm: The urn your application (Relying Party) will use to identify itself.

    • Reply Uri: One of more valid reply uri for your application (Relying Party). Place each url on a seperate line.

    • Relying Party Certificate: The public key of the certificate your application (Relying Party) will use to encrypt the sign-in request.

      It is recommended that you aquire and use a specific certificate, only used for this purpose.

    • Token Signing Certificate: The public/private key pair of the certiciate The Identity Hub - {tenant} will use to sign the sign-in response (SAML Token).

      It is recommended that you aquire and use a specific certificate, only used for this purpose.

    For more information on this see How To: Create an App.

  • Click Save. You will navigate to the detail page of the just created App.

Connecting your application to The Identity Hub

OAuth Parameters

Parameter Name Required/Optional/Not Supported
Token life time Required
Redirection Uri At least one is required

WS-Federation Parameters

Parameter Name Required/Optional/Not Supported
Relying Party Realm Required
Reply Uri At least one is required.
Relying Party Certificate Optional, but recommended. Not supported for SharePoint.
Token Signing Certificate Required

Related sections

How To: What is an App?
How To: Getting Started
How To: What is an Account Provider?
How To: Activate an Account Provider