AM
EN
Get Started Free
Menu
Features

Clients

OAuth client applications with configurable origins, redirects, and token settings.

oauth clients applications configuration

Clients

AM lets you create clients with specific redirect URIs, allowed origins, and token configurations—then rotate keys without downtime.

Mobile apps, web apps, backend services—each gets its own client with its own security settings.

Client Configuration

{
  id: "cid_...",
  account_id: "acc_...",
  name: "My Web App",
  allowed_origins: ["https://app.example.com"],
  redirect_uris: ["https://app.example.com/callback"],
  access_token_config: {
    expires_in: 3600  // 1 hour
  },
  refresh_token_config: {
    expires_in: 1209600  // 14 days
  }
}

Operations

EndpointDescription
POST /api/accounts/:account_id/clientsRegister new client
GET /api/accounts/:account_id/clientsList account’s clients
GET /api/clients/:client_idGet client details
PATCH /api/clients/:client_idModify configuration
DELETE /api/clients/:client_idRemove client

Key Management

Clients sign tokens with RSA key pairs. AM stores private keys securely and exposes public keys via JWKS.

Create KeySign TokensVerify via JWKSRotate Key
Endpoint
GET /api/clients/:client_id/keys
POST /api/clients/:client_id/keys
POST /api/clients/:client_id/jwks/rotate
DELETE /api/client-keys/:client_key_id

Keep 2-4 keys active during rotation so existing tokens remain valid.

Previous
Backend Integration

Token verification via JWKS and OIDC discovery for your backend services.

Next
Email

Transactional email with custom domains, DKIM signing, templates, and delivery tracking.