topic OAuth impersonation client changes from trusted to required after publish in App Development https://community.qlik.com/t5/App-Development/OAuth-impersonation-client-changes-from-trusted-to-required/m-p/2549211#M110270 <P>We are embedding a private Qlik Cloud sheet inside a React app and want backend-issued OAuth impersonation tokens so users are not redirected to Qlik login.</P> <P>Tenant:<BR /><A href="https://3sndgsisxteabed.in.qlikcloud.com" target="_blank" rel="noopener">https://3sndgsisxteabed.in.qlikcloud.com</A></P> <P>We created an OAuth Web client with M2M user impersonation.<BR />Before publish, consent method shows trusted.<BR />After publish, it changes to required.</P> <P>Then backend POST /oauth/token with grant_type=urn:qlik:oauth:user-impersonation fails with:<BR />oauth client is not approved with trusted consent method</P> <P>Is trusted consent supported for published impersonation clients on Qlik Cloud?<BR />Why does publish change it back to required?<BR />Is there any supported no-redirect embed approach for this tenant if impersonation is blocked?</P> Fri, 15 May 2026 13:04:28 GMT Ra_3465_2026 2026-05-15T13:04:28Z OAuth impersonation client changes from trusted to required after publish https://community.qlik.com/t5/App-Development/OAuth-impersonation-client-changes-from-trusted-to-required/m-p/2549211#M110270 <P>We are embedding a private Qlik Cloud sheet inside a React app and want backend-issued OAuth impersonation tokens so users are not redirected to Qlik login.</P> <P>Tenant:<BR /><A href="https://3sndgsisxteabed.in.qlikcloud.com" target="_blank" rel="noopener">https://3sndgsisxteabed.in.qlikcloud.com</A></P> <P>We created an OAuth Web client with M2M user impersonation.<BR />Before publish, consent method shows trusted.<BR />After publish, it changes to required.</P> <P>Then backend POST /oauth/token with grant_type=urn:qlik:oauth:user-impersonation fails with:<BR />oauth client is not approved with trusted consent method</P> <P>Is trusted consent supported for published impersonation clients on Qlik Cloud?<BR />Why does publish change it back to required?<BR />Is there any supported no-redirect embed approach for this tenant if impersonation is blocked?</P> Fri, 15 May 2026 13:04:28 GMT https://community.qlik.com/t5/App-Development/OAuth-impersonation-client-changes-from-trusted-to-required/m-p/2549211#M110270 Ra_3465_2026 2026-05-15T13:04:28Z