Create client
keycloak_client_createCreate a new OAuth/OIDC client in a Keycloak realm. Provide a unique clientId and optional settings like enabled, public client, redirect URIs, and web origins.
Instructions
Create a new OAuth/OIDC client in the configured realm. This is a write operation and is not idempotent: calling it again with the same clientId creates a conflict rather than reusing the existing client. Use keycloak_client_list or keycloak_client_get first to verify the clientId is not already taken, and keycloak_client_update to modify an existing client. Returns a confirmation message naming the created client.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| enabled | No | Whether the client is enabled. Defaults to true; the client is created disabled only when this is explicitly set to false. | |
| clientId | Yes | The clientId to assign to the new client (the human-readable OAuth/OIDC identifier, e.g. "my-app"). Required and must be unique within the realm. | |
| webOrigins | No | Allowed CORS web origins as a list of strings (e.g. ["https://app.example.com"]). Use "+" to allow all registered redirect URI origins, or "*" to allow any. Optional; defaults to an empty list when omitted. | |
| publicClient | No | Whether the client is public (no client secret, e.g. SPA or mobile app). Defaults to false, creating a confidential client; set to true for a public client. | |
| redirectUris | No | Allowed OAuth redirect/callback URIs as a list of strings (e.g. ["https://app.example.com/callback"]). Optional; defaults to an empty list when omitted. |