# Access Token Schema

| Field Name | Description                                                                                                           | Format | Mandatory / Optional | Example                                                                                                         |
| ---------- | --------------------------------------------------------------------------------------------------------------------- | ------ | -------------------- | --------------------------------------------------------------------------------------------------------------- |
| exp        | Expiry of the token (24 hrs)                                                                                          | Long   | Mandatory            | 1600426259                                                                                                      |
| iat        | Issued at time                                                                                                        | Long   | Mandatory            | 1600339859                                                                                                      |
| jti        | JWT ID provides a unique identifier for the JWT                                                                       | UUID   | Optional             | bb70442b-b72c-4149-a596-076d92189914                                                                            |
| iss        | Issuer is the common token issuance server                                                                            | String | Mandatory            | [https://token.sahamati.org.in/auth/realms/sahamati&#xD;](https://tokens.sahamati.org.in/auth/realms/sahamathi) |
| sub        | Unique ID for the client                                                                                              | String | Mandatory            | 0fa208a8-676c-43fa-bcc4-464d17f4608c                                                                            |
| typ        | Type parameter is used to declare structural information about the JWT                                                | String | Optional             | Bearer                                                                                                          |
| azp        | Authorized party - the party to which the ID Token was issued                                                         | String | Optional             | aa-uat                                                                                                          |
| acr        | An Authentication Context Class specifies a set of business rules that authentications are being requested to satisfy | String | Optional             | 1                                                                                                               |
| scope      | Scope values                                                                                                          | String | Optional             | openid email profile                                                                                            |
| roles      | Currently its FIP, FIU, AA. We will add more to it as the ecosystem expands.                                          | String | Mandatory            | AA                                                                                                              |