Application clients

Application clients define the relationship between Strivacity and the brand portal’s preferred authentication protocol. Strivacity supports both modern and legacy approaches to ensure you can modernize what you can while still supporting legacy systems.

Application clients include:

OIDC using no-code components: Enables the full power of Strivacity's login and registration workflows implemented via OAuth2/OIDC and no-code components. This client can also be configured to enable the Strivacity Admin portal APIs.
OIDC using a simple API: Enables ONLY a simple username/password check using an OAuth2/OIDC API endpoint.
OIDC using the Journey Flow API: Enables native client experience via an OAuth2/OIDC and the Strivacity Journey-flow API for Native Clients.
OIDC using the token exchange mechanism: The OAuth token exchange is a mechanism that allows a client to trade one access token for another, typically with different scopes, audiences, or subject identities.
SAML2 using no-code components: Enables the full power of Strivacity's login and registration workflows implemented via SAML2 and no-code components.
Login Gateway: Enables headers-based authentication via connection to an on-premise Login Gateway component.

Two additional clients integrate with Strivacity-provided applications: the Organization portal and the Self-service portal.

A dialog titled "Create client" in the Strivacity Admin Console lists several client types. The options are: "OIDC using no-code components" which enables login and registration workflows via OAuth2/OIDC and no-code components; "OIDC using a simple API," marked with a "SIMPLIFIED" label, which supports username and password authentication through an API endpoint; "OIDC using the Journey Flow API," labeled "NATIVE," which enables login using an OAuth2/OIDC and journey flow API; "OIDC using the token exchange mechanism," labeled "TOKEN EXCHANGE," which supports exchanging one access token for another with different scopes or identities; "SAML2 using no-code components," which supports SAML2-based workflows with no-code; "Login gateway," which enables headers-based authentication through an on-premise component; and "Organization portal," which allows delegated administration for B2B user management. Each option includes an icon and short description. — Selection of application clients available

Creating a client

You can create a client after creating and saving an application.

Open Applications.
Select the application you want to configure.
Open the Clients tab.
Select Create client.
Choose the client type.
Configure the client settings.

After creating a client, you can open it from the client list to edit its configuration.

Client configuration

After creating a client, you can configure how the client interacts with Strivacity authentication.

Client configuration is managed in the Admin Console under:

Applications → select application → Clients → select client

Each client contains several configuration tabs. These tabs define how the client behaves during authentication and how it integrates with the brand application.

The available configuration tabs depend on the selected client type.

The following pages describe the configuration options for each client type:

Updated 11 days ago