Access Token Schema
Field Name | Description | Format | Mandatory / Optional | Example |
---|---|---|---|---|
exp | Expiry of the token (24 hrs) | Long | Mandatory | 1600426259 |
iat | Issued at time | Long | Mandatory | 1600339859 |
jti | JWT ID provides a unique identifier for the JWT | UUID | Optional | bb70442b-b72c-4149-a596-076d92189914 |
iss | Issuer is the common token issuance server | String | Mandatory | |
sub | Unique ID for the client | String | Mandatory | 0fa208a8-676c-43fa-bcc4-464d17f4608c |
typ | Type parameter is used to declare structural information about the JWT | String | Optional | Bearer |
azp | Authorized party - the party to which the ID Token was issued | String | Optional | aa-uat |
acr | An Authentication Context Class specifies a set of business rules that authentications are being requested to satisfy | String | Optional | 1 |
scope | Scope values | String | Optional | openid email profile |
roles | Currently its FIP, FIU, AA. We will add more to it as the ecosystem expands. | String | Mandatory | AA |
Last updated