Update client
keycloak_client_updateUpdate a Keycloak client's enabled state, public flag, redirect URIs, or web origins. Only provided fields change; omitted fields remain untouched.
Instructions
Update an existing client's enabled flag, public flag, redirect URIs and/or web origins. Only the fields you supply are changed; omitted fields are left untouched. This is a write operation and is idempotent: applying the same values again yields the same state. Use keycloak_client_list or keycloak_client_get to find the client first. Returns a confirmation message, or a reason string (e.g. when the client does not exist).
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| enabled | No | New enabled state for the client. Omit to leave the current value unchanged; the change is applied only when a boolean is provided. | |
| clientId | Yes | The clientId of the existing client to update (the human-readable OAuth/OIDC identifier), not the internal UUID. Required; identifies the target and is not itself changed. | |
| webOrigins | No | New full list of allowed CORS web origins, replacing the existing list (e.g. ["https://app.example.com"]; "+" allows all registered redirect URI origins, "*" allows any). Omit to leave the current origins unchanged; pass an empty array to clear them. | |
| publicClient | No | New public/confidential flag (true = public, false = confidential). Omit to leave the current value unchanged. | |
| redirectUris | No | New full list of allowed redirect/callback URIs, replacing the existing list. Omit to leave the current URIs unchanged; pass an empty array to clear them. |