Delete old OAuth client's secret
DELETE {{baseUrl}}/provider/oauth/clients/:id/secrets
Delete the old client's secret. If there is only one secret, the request will fail. If the scope is prv.oc.sec.ch
, then the client can change it's own secret and needs to provide its old secret. If the scope is prv.oc.sec.admin
, then it can change arbitrary client secret in the tenant. This is for technical users only.
HEADERS
Key | Datatype | Required | Description |
---|---|---|---|
Current-Secret | string | Required, unless your have prv.oc.sec.admin scope. It is used to make sure the requestor has permission to modify the given client's secret. |