Developer Docs for Singpass
  • INTRODUCTION
    • Overview of Singpass
    • Understanding the basics of OIDC
  • GETTING STARTED
    • Onboarding Checklist
    • Understanding the Basics
      • Discovery Endpoint
      • Scopes
      • Setup JSON Web Key Store (JWKS)
      • Configure Singpass Application on SDP (In-Progress)
      • Configure Singpass Application
      • Request for Staging Account and Staging Mobile App
    • Start Integration
    • Custom Integration
      • Demo Application Setup
      • Invoke Authorization Endpoint
      • Setup Client Assertion
      • Invoke Token Endpoint
  • MORE INFOMATION
    • Contact
    • FAQ
Powered by GitBook
On this page
  • Step 1: Configure App Name
  • Step 2: Configure App Description
  • Step 3: Select Client Profile Type
  • Step 4: Configure Redirect URI(s)
  • Step 5: Configure JSON Web Key Store (JWKS)
  • Step 6: Save Application Settings
  • Next steps
  1. GETTING STARTED
  2. Understanding the Basics

Configure Singpass Application on SDP (In-Progress)

PreviousSetup JSON Web Key Store (JWKS)NextConfigure Singpass Application

Last updated 10 months ago

Every Singpass Application is assigned with a unique identity known as Client ID that will be required when calling Singpass’s Endpoint. Login to to create a new Singpass Application or use an existing application client’s ID for the integration.

Configure the following necessary Application settings.

Step 1: Configure App Name

This application name is the name of your digital service/application. This will appear on the consent page that your users will see when they give consent to login to your digital service.


 Example of consent page when App Name is configured as Test App.

Step 2: Configure App Description

Description of your digital service/application. Describe the use case for your app and what it does for Singpass’s administrative purposes.

Step 3: Select Client Profile Type

Step 4: Configure Redirect URI(s)

A redirect URL is a URL in your application that Singpass will use to redirect users after they have been authenticated or when the ID Token is being returned. For the staging environment, if not set the default callback URL is set to http://localhost:3000 which means users will be redirected to the application's initial loading page.

Step 5: Configure JSON Web Key Store (JWKS)

  • Provide a JWKS in a JSON format

For configuration with JWKS Endpoint

  • Select JWKS Endpoint and provide the JWKS Endpoint

For configuration with JWKS Object

  • Select JWKS Object and provide the JWKS Object

Step 6: Save Application Settings

Once saved, the client ID will be populated. This is a unique identity known as that will be required when calling Singpass’s Endpoint.

Next steps

Set the client profile type. This will determine the from Singpass's token endpoint.

Configure JWKS with the public keys set in the . This will be used by Singpass for verification and encryption purposes. Relying Party (RP) can do so only via ONE of the following forms:

Host the JWKS on a publicly accessible URL. This endpoint must be compatible with

to call Singpass's Authorization Endpoint

If you have successfully integrated with Singpass's Authorization, proceed to

claims response
previous step
Singpass’s service level expectations
Create Singpass Login Button
setup the Client Assertion
Singpass Developer Portal