Version 5.x has been out of support since December 13, 2022, and this corresponding section of the documentation is no longer maintained. We strongly recommend you upgrade to the latest supported version of 7.x and read the latest version of this documentation.

Device Authorization Endpoint

The device authorization endpoint can be used to request device and user codes. This endpoint is used to start the device flow authorization process.

  • client_id

    client identifier (required)

  • client_secret

    client secret either in the post body, or as a basic authentication header. Optional.

  • scope

    one or more registered scopes. If not specified, a token for all explicitly allowed scopes will be issued

POST /connect/deviceauthorization

    client_id=client1&
    client_secret=secret&
    scope=openid api1

.NET client library

You can use the IdentityModel client library to programmatically interact with the protocol endpoint from .NET code.

using IdentityModel.Client;

var client = new HttpClient();

var response = await client.RequestDeviceAuthorizationAsync(new DeviceAuthorizationRequest
{
    Address = "https://demo.duendesoftware.com/connect/deviceauthorization",
    ClientId = "device"
});