Skip to content
Autentico

Per-Client Configuration

Each client can override a subset of global runtime settings. This lets you give different clients different token lifetimes, session policies, and feature flags without changing the global defaults.

See Per-Client Overrides for the full reference — field names, types, and examples.

Common use cases

Section titled “Common use cases”

Long-lived tokens for a mobile app:

Mobile apps can tolerate longer refresh token windows since they run in a trusted context.

{
  "client_name": "My Mobile App",
  "refresh_token_expiration": "8760h"
}

Stricter session idle timeout for a banking app:

{
  "client_name": "Banking Portal",
  "sso_session_idle_timeout": "15m"
}

Trusted devices disabled for a high-security client:

{
  "client_name": "Admin Console",
  "trust_device_enabled": false
}

Self-signup enabled only for one client:

If global allow_self_signup is false, you can enable it just for a specific client:

{
  "client_name": "Community Forum",
  "allow_self_signup": true
}