auth0 · tanya732 · Oct 24, 2025 · Oct 7, 2025 · Oct 24, 2025 · Oct 24, 2025
@@ -31,6 +31,8 @@ public class Client {
     private String logoUri;
     @JsonProperty("is_first_party")
     private Boolean isFirstParty;
+    @JsonProperty("is_token_endpoint_ip_header_trusted")
+    private Boolean isTokenEndpointIpHeaderTrusted;
     @JsonProperty("oidc_conformant")
     private Boolean oidcConformant;
     @JsonProperty("callbacks")
@@ -295,6 +297,26 @@ public void setIsFirstParty(Boolean isFirstParty) {
         this.isFirstParty = isFirstParty;
     }
 
+    /**
+     * Whether the token endpoint IP header is trusted for this application.
+     *
+     * @return true if the token endpoint IP header is trusted, false otherwise.
+     */
+    @JsonProperty("is_token_endpoint_ip_header_trusted")
+    public Boolean getIsTokenEndpointIpHeaderTrusted() {
+        return isTokenEndpointIpHeaderTrusted;
+    }
+
+    /**
+     * Setter for whether the token endpoint IP header is trusted for this application.
+     *
+     * @param isTokenEndpointIpHeaderTrusted whether the token endpoint IP header is trusted or not.
+     */
+    @JsonProperty("is_token_endpoint_ip_header_trusted")
+    public void setIsTokenEndpointIpHeaderTrusted(Boolean isTokenEndpointIpHeaderTrusted) {
+        this.isTokenEndpointIpHeaderTrusted = isTokenEndpointIpHeaderTrusted;
+    }
+
     /**
      * Whether this application will conform to strict Open ID Connect specifications or not.
      *

@@ -27,6 +27,7 @@ public class ClientTest extends JsonTest<Client> {
         "  \"logo_uri\": \"uri\",\n" +
         "  \"oidc_conformant\": true,\n" +
         "  \"is_first_party\": true,\n" +
+        "  \"is_token_endpoint_ip_header_trusted\": true,\n" +
         "  \"initiate_login_uri\": \"https://myhome.com/login\",\n" +
         "  \"callbacks\": [\n" +
         "    \"value\"\n" +
@@ -163,6 +164,7 @@ public void shouldSerialize() throws Exception {
         client.setLogoUri("uri");
         client.setOIDCConformant(true);
         client.setIsFirstParty(true);
+        client.setIsTokenEndpointIpHeaderTrusted(true);
         List<String> stringList = Collections.singletonList("value");
         client.setCallbacks(stringList);
         client.setAllowedOrigins(stringList);
@@ -251,6 +253,7 @@ public void shouldSerialize() throws Exception {
         assertThat(serialized, JsonMatcher.hasEntry("oidc_conformant", true));
         assertThat(serialized, JsonMatcher.hasEntry("initiate_login_uri", "https://appzero.com/login"));
         assertThat(serialized, JsonMatcher.hasEntry("is_first_party", true));
+        assertThat(serialized, JsonMatcher.hasEntry("is_token_endpoint_ip_header_trusted", true));
         assertThat(serialized, JsonMatcher.hasEntry("callbacks", Collections.singletonList("value")));
         assertThat(serialized, JsonMatcher.hasEntry("grant_types", Collections.singletonList("value")));
         assertThat(serialized, JsonMatcher.hasEntry("allowed_origins", Collections.singletonList("value")));
@@ -298,6 +301,7 @@ public void shouldDeserialize() throws Exception {
 
         assertThat(client.isOIDCConformant(), is(true));
         assertThat(client.isFirstParty(), is(true));
+        assertThat(client.getIsTokenEndpointIpHeaderTrusted(), is(true));
 
         assertThat(client.getCallbacks(), contains("value"));
         assertThat(client.getWebOrigins(), contains("value"));