To create identity domain, any valid reliable REST client application/tool can be used to invoke the REST API. For example, Postman tool.

http:<AdminServerHost:Port>/oam/services/rest/ssa/api/v1/oauthpolicyadmin/oauthidentitydomain

Request JSON payload

{
"name":"OFSLL_OAUTH_DOMAIN",
"identityProvider":"OUD_LDAP",
"description":"OFSLL_OAUTH_DOMAIN",
"tokenSettings":[{
"tokenType":"ACCESS_TOKEN",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":true
},
{
"tokenType":"AUTHZ_CODE",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":true
},
{
"tokenType":"SSO_LINK_TOKEN",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":false
}],
"errorPageURL":"/oam/pages/error.jsp",
"consentPageURL":"oam/pages/consent.jsp",
"customAttrs":"Attribute of user in IDStore to store the encrypted secretkey for TOTP"
}

Response JSON payload

Sucessfully created entity - OAuthIdentityDomain, detail - OAuth Identity Domain :: Name
- OFSLL_OAUTH_DOMAIN,
Id - 37b278eb5e894085ab1656b9641cca1a, Description - OFSLL_OAUTH_DOMAIN,
TrustStore Identifiers - [OFSLL_OAUTH_DOMAIN],
Identity Provider - OUD_LDAP, TokenSettings - [{
"tokenType":"ACCESS_TOKEN",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":true
},
{
"tokenType":"AUTHZ_CODE",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":true
},
{
"tokenType":"SSO_LINK_TOKEN",
"tokenExpiry":3600,
"lifeCycleEnabled":true,
"refreshTokenEnabled":true,
"refreshTokenExpiry":86400,
"refreshTokenLifeCycleEnabled":false}],
ConsentPageURL - oam/pages/consent.jsp,
ErrorPageURL - /oam/pages/error.jsp,
CustomAttrs - Attribute of user in IDStore to store the encrypted secretkey for TOTP