Lab 05 - Create an application

Rationale: "Application" is the configuration you need when you want to use Domino's build in Identity Provider (IdP) functionality. IdP is part of the OAuth based Identity standard

Duration 10 min

What you will learn

Configure credentials, so an application can login on your behalf with a limited set of permissions. Needed for lab 6.

Prerequisites

Lab 04 completed
Domino running

Steps in creating app in Admin UI

Go to Application navigation pane and click Add Application.
Fill in the fields according to below image.
- The callback URLs need to be provided by the application developer/admin and need to match
- Add scopes as desired
Scopes need to exist

You can specify one or more scopes that don't exist (yet). Just make sure they do once the application shall be used.
Click Add. The app save in the app list.

Alternative POST to /api/setup-v1/admin/application

{
  "client_name": "XYTraining",
  "description": "The external Training APP",
  "redirect_uris": ["http://localhost:3000/auth/callback"],
  "client_uri": "https://www.spiegel.de",
  "scope": "trainingcorp",
  "logo_uri": "cathedral",
  "status": "isActive",
  "contacts": ["Doctor.Notes@projectkeep.io"]
}

Generate Application Secret

Click the Generate Application Secret icon.
The generated secret will be shown on the app.

Note

Write or note the App Secret and App Id.

Alternative POST to /api/setup-v1/admin/application/{{ CLIENT_ID }}/secret?force=true

{
  "client_id": "{{ CLIENT_ID }}",
  "status": "isActive"
}

App Secrets can't be retrieved

Once you switch away from the App screen where you saw the "App Secret" it is gone. We store and save it salted and hashed and can't transform it back

How to check

App shows up in admin UI.
App shows up in landing screen.

Things to explore

Official Domino REST API documentation
Discord discussion
Explore creating / retrieving app in Postman.
Reset the secret.
Do the OAuth dance in Postman.