Calling the “authenticate” API returns an “idToken”. What is it?
When I make a call to https://dev.vantiq.com/authenticate
It returns both an accessToken and an idToken
{
“accessToken”: “RTNrbk8evo89Xy4c5X2Qw…”,
“idToken”: “eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9… ”
}
What is the purpose of the idToken?
ANSWER
It is an OIDC ID Token — https://openid.net/specs/openid-connect-core-1_0.html#IDToken
Its job is to provide the client with information (in the form of “claims”) about the authenticated user. It will always be a JWT (https://jwt.io/).
-
This topic was modified 4 years, 5 months ago by
Ken.
-
This topic was modified 4 years, 5 months ago by Ken.
When I make a call to https://dev.vantiq.com/authenticate
It returns both an accessToken and an idToken
{
“accessToken”: “RTNrbk8evo89Xy4c5X2Qw…”,
“idToken”: “eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9… ”
}
What is the purpose of the idToken?
ANSWER
It is an OIDC ID Token — https://openid.net/specs/openid-connect-core-1_0.html#IDToken
Its job is to provide the client with information (in the form of “claims”) about the authenticated user. It will always be a JWT (https://jwt.io/).