If you manage your application’s data using APIs, you can register them with Kinde.

1. Go to Settings > APIs.
2. Select Add API.
3. Enter an API name and Audience. The audience is a unique identifier for this API. Often a short code or the URL of the API is used.
4. Select Save. The details window for the API opens. You’ll notice that an ID has been created, but it is not editable and neither is the audience. You can copy these details, however.
5. To activate this API for your apps, select Applications in the left menu.
6. Activate the connection for each application that uses the API.

Our SDKs accept an audience parameter. As an example for the React SDK you would use:

<KindeProvider
    audience="api.example.com/v1"
    clientId="someClientId"
    domain="https://kinde.example.com"
>
    <MyApp />
</KindeProvider>

When the request is received, Kinde will check that an API with a matching audience has been registered and is enabled for the application with the requested clientId. (In the example above someClientId). If there is a match it will return the aud claim as part of the Access token. For example:

{
    aud: ["api.example.com/v1"];
}

When you use this Access token in your product and send it to your product’s API, you can check for the existence of this aud claim in the token as part of your verification checks.

1. Go to Settings > APIs.
2. Select Configure on the relevant API card. The API detail opens.
3. Select Applications in the left.
4. Activate or deactivate using the switch on the right.
5. Select Save.