Quickstart

You can get started with ThunderID in minutes. This guide walks you through registering an application and creating a test user so you are ready to integrate ThunderID into your app.

Prerequisites

• ThunderID is up and running. See Get ThunderID to get started.
• You have access to the ThunderID Console.

1

Step 1: Create an Application

An application in ThunderID defines how your users authenticate and what they can access. Register one to get a Client ID and use it to integrate your own application with ThunderID.

1. Sign in to the ThunderID Console at https://localhost:8090/console.

2. Navigate to Applications → New Application.

3. Enter an Application Name.

4. Select the Sign-In Options. Users will use these methods to sign in to your application (for example, Username & Password or social login).

5. Configure the Sign-In Experience. Select how and who can access your application:

   • Sign-In Approach - choose how your users reach the sign-in experience.

     • Redirect to ThunderID sign-in/sign-up handling pages (recommended) - When signing in, users are taken to ThunderID-hosted pages that you can customize with the Flow Designer and wire up with your app in just a few steps.
     • Embedded sign-in/sign-up components in your app - bring the sign-in experience right into your app using ThunderID's UI components or APIs.

   • User Access: Select which user types can access this application. Customer, Person, or both.

     User Types

     User types define the profile and attributes for different categories of users. ThunderID includes the following default user types:

     • Customer: End users who interact with your application. This type allows self-registration.
     • Person: Administrator-managed general-purpose user accounts.
       
       

     You can also create your own custom user types. Learn more in User Types.

6. Select the Application Type and provide a redirect URL if prompted.

   Application Types

   ThunderID supports the following application types. The application type decides the configuration

   Application Type	Description
   ⚛️ Browser App	For single-page applications (React, Angular, Vue) that run in the browser. Set an Authorized Redirect URL (for example, http://localhost:3000/callback) to receive the sign-in response.
   🌐 Full-stack App	For server-rendered web apps (Express, Spring, .NET) where the backend handles token exchange. Set an Authorized Redirect URL on your server to receive the authentication response.
   📱 Mobile App	For native or cross-platform mobile apps (Swift, Kotlin, React Native, Flutter). Set a Deep Link (for example, com.example.app://auth/callback) or Universal Link as the redirect.
   🤖 Backend Service	For server-to-server communication with no user sign-in — background jobs, internal APIs, or microservices. No redirect URL needed. Authenticate using the Client ID and Client Secret.

7. Click Create Application.

tip

Note the Client ID from the application details page. You need it to configure your integration.

2

Step 2: Create a User

Now that you have created an application, you'll need a user to test sign-in flows with your application.

1. In the ThunderID Console, navigate to the Users section.
2. Click Add User and select a User Type.
3. Fill in the user attributes. For example, username, email, given_name, family_name, password.
4. Click Create User.

Next Steps

Now that you have an application and a user, choose your framework to add sign-in to your app.

React

Add sign-in to a React app using the Asgardeo React SDK. Includes Authorization Code flow with PKCE.

Get started →

Other Frameworks

Vue, Angular, Next.js, SvelteKit, and more.

Coming soon

Mobile

React Native, Flutter, Swift, and Kotlin.

Coming soon