Onegini docs
  • Google Custom Search
  • Introduction
  • 1. Quick start
    • 1.1. Installation
      • 1.1.1. Requirements
      • 1.1.2. Instructions
    • 1.2. Setup
      • 1.2.1. Configuration setup example apps
      • 1.2.2. Next steps
      • 1.2.3. Securing resources
  • 2. Configuration
    • 2.1. Properties
    • 2.2. Clustering
    • 2.3. Redis
    • 2.4. Custom Truststore
    • 2.5. Custom Keystore
    • 2.6. Scope Authentication
    • 2.7. Token Server admin
  • 3. API Reference
    • 3.1. OAuth endpoints
    • 3.2. OpenID Connect
      • 3.2.1. Discovery API
      • 3.2.2. JSON Web Key Set API
      • 3.2.3. User Info API
      • 3.2.4. Session Management
        • 3.2.4.1. Check Session API
        • 3.2.4.2. End Session API
    • 3.3. Token Introspection
    • 3.4. Mobile authentication
      • 3.4.1. API version 4
      • 3.4.2. API version 3
      • 3.4.3. API version 2 (deprecated)
    • 3.5. Two way otp authentication
    • 3.6. Custom Registration Backchannel
    • 3.7. Admin API
      • 3.7.1. API Client
      • 3.7.2. DUM Engine Configuration API
    • 3.8. Config API
      • 3.8.1. Applications
        • 3.8.1.1. Application versions
      • 3.8.2. Identity Providers
      • 3.8.3. Web Client
    • 3.9. End user
      • 3.9.1. Access token API
      • 3.9.2. Consent API
      • 3.9.3. Device API version 4
      • 3.9.4. Device API version 3 (deprecated)
      • 3.9.5. Application API
      • 3.9.6. Notification settings API
    • 3.10. Events API
  • 4. Topic guides
    • 4.1. Admin console authentication
      • 4.1.1. LDAP
      • 4.1.2. Header authentication
      • 4.1.3. In memory authentication
    • 4.2. Client authentication methods
    • 4.3. General client application configuration
      • 4.3.1. PIN policy configuration
      • 4.3.2. Scopes configuration
      • 4.3.3. Identity provider configuration
      • 4.3.4. Resource gateway configuration
      • 4.3.5. OS version management
    • 4.4. Mobile applications
      • 4.4.1. Mobile application configuration
      • 4.4.2. Mobile application version management
      • 4.4.3. Mobile application delivery lifecycle
      • 4.4.4. Mobile authentication
      • 4.4.5. Transaction signing
      • 4.4.6. Implicit authentication
    • 4.5. Web clients
      • 4.5.1. Web client configuration
      • 4.5.2. Resource owner password credentials
    • 4.6. Tokens
      • 4.6.1. Access Token
      • 4.6.2. ID Token
      • 4.6.3. Refresh Token
    • 4.7. OpenID Connect
      • 4.7.1. OpenID Connect overview
      • 4.7.2. Authentication
      • 4.7.3. Scopes and claims
      • 4.7.4. Configuration
      • 4.7.5. ID Token Encryption
      • 4.7.6. Session Management
        • 4.7.6.1. Session Monitoring with iFrames
        • 4.7.6.2. Relying Party iFrame
        • 4.7.6.3. End Session Endpoint behavior and configuration
      • 4.7.7. Relying Party Examples
        • 4.7.7.1. Node.js
        • 4.7.7.2. Java Spring
        • 4.7.7.3. ASP.NET Core
    • 4.8. Custom Authenticators
      • 4.8.1. Custom Authenticators Configuration
      • 4.8.2. Custom Authenticator Example
    • 4.9. Custom Registration
      • 4.9.1. Custom API Example
      • 4.9.2. QR Registration Example
      • 4.9.3. QR Device Registration Example
      • 4.9.4. Two way OTP API
    • 4.10. End user support
      • 4.10.1. User management
    • 4.11. Technical application management
      • 4.11.1. General configuration
      • 4.11.2. System features configuration
      • 4.11.3. Api configuration
      • 4.11.4. Logging
      • 4.11.5. CORS configuration
      • 4.11.6. Proxy configuration
      • 4.11.7. Extension Engine
        • 4.11.7.1. Connection
        • 4.11.7.2. Properties
      • 4.11.8. SAML Service Provider configuration
      • 4.11.9. Cache configuration
      • 4.11.10. Geolocation service
    • 4.12. Integration and extension
      • 4.12.1. Configure SMS gateway
      • 4.12.2. Configure Scope Verification Service
    • 4.13. Look and Feel
      • 4.13.1. Templates
      • 4.13.2. Translations
    • 4.14. App To Web SSO
    • 4.15. Experimental features
    • 4.16. Delegated User Management
      • 4.16.1. DUM Engine Configuration
    • 4.17. AWS
      • 4.17.1. OneSee security events
  • 5. Appendix
    • 5.1. Administration console
      • 5.1.1. Roles Overview
      • 5.1.2. Activity
      • 5.1.3. Insights
      • 5.1.4. OAuth Config
      • 5.1.5. API Config
    • 5.2. Templates
    • 5.3. Extension Points
      • 5.3.1. REST SMS Gateway
      • 5.3.2. REST Notification Service
      • 5.3.3. REST Scope Verification Service
    • 5.4. Token Server events
    • 5.5. Responsible disclosure policy
    • 5.6. Deprecation
  • 6. Upgrade instructions
    • 6.1. 12.x versions
    • 6.2. 11.x versions
    • 6.3. 10.x versions
    • 6.4. 9.x versions
    • 6.5. Older versions
      • 6.5.1. 6.0.0 version
        • 6.5.1.1. Custom authenticators
        • 6.5.1.2. Migration to the HTTP/2 APNs API
        • 6.5.1.3. Migration to FCM
        • 6.5.1.4. Mobile authentication fallback
        • 6.5.1.5. Migrate to API Client resource gateway
        • 6.5.1.6. iOS push messaging configuration migration
  • 7. Release notes
    • 7.1. 12.x versions
    • 7.2. 11.x versions
    • 7.3. 10.x versions
    • 7.4. 9.x versions
    • 7.5. Older versions

Onegini Token Server

Mobile applications

The mobile applications topic guides are focused on configuration of mobile applications.

  • Mobile application configuration
  • Mobile application version management
  • Mobile application delivery lifecycle
  • Mobile authentication configuration
  • Transaction signing
  • Implicit authentication
  • Onegini Home

Follow us

  • Twitter
  • LinkedIn

Get in touch

Contact

Tel: +31 30 711 6845
info@onegini.com

Need support?

Tel: +31 348 799 808
support.onegini.com

Privacy Policy

Get email updates

© Onegini