/v1/mgmt/sso/idp/app/oidc/updateAuthorization
Descope Project ID and Management Key Project ID:Management Key as bearer token.
In: header
Request Body
application/json
Optional: import an existing OIDC client. Both are accepted on create only (immutable afterward); empty means the client_id is computed and the client_secret is generated server-side. The client_id must be unique within the project. The client_secret is returned once on the create response.
Default audience policy for issued tokens. Applies only to modern apps (non-empty clientType): 'projectId', 'clientId', 'appId', empty (both), or 'empty' (no aud at all). Legacy apps are unaffected. Mirrors third-party apps.
trustedAppIds lists sibling SSO apps whose roles are included in this app's JWT under the
trustedApps claim at login time. Apps where the user has no roles are silently omitted.
Custom attributes as key-value pairs. Keys must be strings; values can be strings, numbers, booleans, or arrays.
{
"attribute-key": "attribute-value"
}Audience policy applied to trusted sibling apps' identifiers when appended to the issued token's
aud (see trustedAppIds). Same value set as defaultAudience: 'projectId' / 'clientId' / 'appId' /
empty (=both) / 'empty' (add none). Independent of defaultAudience.
serviceAccountRoles assigns this app (when client_credentials is enabled) application-roles in its
trusted apps; surfaced in its client_credentials token under the app.trustedApps claim.
Update OIDC Application within a project
This endpoint updates an OIDC Application within your Descope project.
See Also
- Review our documentation around Applications within Descope.
curl -X POST "https://api.descope.com/v1/mgmt/sso/idp/app/oidc/update" \ -H "Content-Type: application/json" \ -d '{}'Create OIDC Application POST
### Create OIDC Application within a project This endpoint creates an OIDC Application within your Descope project. ### See Also - Review our [documentation](/manage/idpapplications/) around Applications within Descope.
Delete Application POST
### Delete an Application within a project This endpoint deletes an Application within your Descope project. ### See Also - Review our [documentation](/manage/idpapplications/) around Applications within Descope.