Your suggested change has been received. Thank you.

Suggest A Change

Thank you! Your suggestion has been submitted.

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

There are some errors in your form.

Your Name This field is required

Your Email This field is required

How can we improve this content? This field is required

OneWelcome Identity Platform
- Explore Thales Docs

IDAAS core
User journey orchestration
Consent and preference management
Identity broker
Delegated User Management v2
Externalized authorization
Delegated user management
- Getting started
- Roles
- Rules
- User management
- Self service page
- Data
- APIs
- Apps
- Jobs
- Reports
Risk management
- Essential rules
- Default policies (Essential)
Mobile identity
- Mobile identity - Access component
- Mobile identity - Tulip
Mobile SDK
API references
Release notes and FAQ
Integrations
Identity Orchestrator (IO)

All

All

API references

Consent Management v2 API references

Please Note:

API references
IDAAS-core APIs - Access component
- Access config API
- Access token customization web hook API
- User details customization hook API
- SAML Authentication Response Web Hook
- Token exchange web hook API
IDAAS core API references - Tulip component
- Credential API
- Dynamic Client Registration (DCR) API
- Event API
- Notification API
- OAuth 2.0 & OpenID Connect API
- Oauth consent API
- OAuth and OIDC Client Registration API
- Reverse Look-Up API
- Session Management API
- SCIM API v1.1 protected with basic authentication
- SCIM API v1.1 protected with fine-grained Oauth2 scopes
- SCIM API v1.1 protected with OAuth2 scopes
- SCIM API v1/v2 protected with basic authentication
- SCIM API v1/v2 protected with fine-grained OAuth2 scopes
- SCIM API v1/v2 protected with OAuth2 scopes (v1/v2)
Consent and preference management API references
- Consent Management API
- Consent configuration API reference
Consent Management v2 API references
- Consent Management v2 Configuration API
- Consent Management v2 Ledger API
- Consent Management v2 Runtime API
Delegated user management API references
- Correlation Layer API
- Onewelcome Delegation
- RITM V1 API
- RITM V2 API
Externalized authorization API references
- Authorization configuration API reference
- Authorization API reference
- Event Stream Config API
- Logs Config API
- Mail configuration API reference
- Mail API reference
- Relationship configuration API reference
- Relationship Management API
Mobile Identity API reference
- OMI API
- OMI Authentication API
FIDO authentication API reference
- Authenticator admin API
- Authenticator assertion API
- Authenticator attestation API
- Authenticator policy admin API
- User admin API
Identity Broker API

Was this document helpful? Yes No

Feedback Sent!

If you like, you can provide additional feedback.

OneWelcome Identity Platform
API references
Consent Management v2 API references

Consent Management v2 API references

The OneWelcome Identity Platform provides access to the following Consent Management v2 APIs:

Configuration API
Runtime API
Ledger API

The Consent Management v2 service is a multi-tenant service that streamlines communication between the Consent UI and the backend database.

API categories

Configuration API

The Configuration API allows platform administrators to manage the consent configuration:

Tenant Management: Configure tenant-level settings.
Document Definition Management: Create and manage consent document definitions.
Document Version Management: Manage versions of consent documents.
Document Localization Management: Manage language-specific localizations of consent documents.

Runtime API

The Runtime API allows applications to interact with user consents at runtime:

User Consent Management: Register user consents and query outstanding consent documents that require user action.

Ledger API

The Ledger API provides audit and reporting capabilities:

Consent Ledger: Query the historical consent ledger for audit and compliance purposes.

Authentication and authorization

All Consent Management v2 APIs are protected by OAuth2 Bearer JWT tokens. Two authentication flows are supported:

Client Credentials (S2S): For server-to-server integrations using OAuth2 scopes for authorization.
Authorization Code: For user-facing applications where the user is authenticated. Authorization is based on DABP roles retrieved from the user info endpoint.

On this page

OneWelcome Identity Platform

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com

Support
- Customer Release Notes
- Support Contacts
Legal
- End User License Agreement
- Terms of Service

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com