Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
The TokenInfo Token Introspection endpoint allows your application to return information about an access token or refresh token. You can find this endpoint from the OAuth Discovery Endpoint.
OAuth Discovery Endpoint
https://<EID Server>/oauth/.well-known/openid-configuration
How to call the
TokenInfoToken Introspection Endpoint
1. Initiate a request to the EmpowerID Token Information Introspection endpoint, https://<EID Server>/oauth/v2/tokeninfo
Code Block |
---|
POST /oauth/v2/userinfo HTTP/1.1 Host: <EID Server> Content-Type: application/x-www-form-urlencoded Cache-Control: no-cache Authorization: Basic base64Encode(<ClientID>:<ClientSecret>) token=xxxxxxxxxxxxxxxxxx &token_type_hint=refresh_token/access_token |
Header Parameter | Required/Optional | Description |
---|---|---|
| required | Must be |
| required | Base64 encoded value of ClientID and Client Secret |
Post Body Parameter | Required/Optional | Description |
---|---|---|
| required | Must be the EmpowerID access token or refresh token |
| required | If the token is a refresh token, set |
2. Returns token information in the response
Code Block |
---|
{ "active": true, "client_id": "xxxxxxxxxxxxxxxxxxxxxxxx", "token_type": "Bearer", "username": "xxxxxxxxxx", "exp": 1555698438, "iat": 1555694839, "nbf": 1555694839, "sub": "xxxxxxxxxxxxx", "iss": "xxxxxxxxxxxxx" } |
Div | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
IN THIS ARTICLE
|