Consent Token

The consent token is generated by Consents API and encapsulates the consent give by the user to the client (i.e. OAuth 2.0 scopes). This token is purely internal and can't be configured.

An example consent token:

{
  "https://api.quasr.io/claims/typ": "online:consent", // token type
  "https://api.quasr.io/claims/max": 1973910487, // max validity
  "https://api.quasr.io/claims/use": 1, // one-time use
  "scope": "openid", // consented scopes
  "client_id": "abe5ffb6-2f03-492d-8424-184e28685b17", // client ID
  "sub": "ffd99cbb-f322-4dcf-8c64-48cc26c55c65", // account iD
  "jti": "9fba288c-43a5-4211-8723-3f895a9b59a1", // token ID
  "aud": "https://api.quasr.io",
  "iss": "https://b62a482d-7365-4ae9-85a5-1453b3b0d5b6.api.quasr.io", // tenant ID
  "iat": 1642352776, // issued at
  "nbf": 1642352776, // not before
  "exp": 1642353076 // expires at
}

PreviousID Token (OIDC 1.0)NextAuthorization Code (OAuth 2.0)

Last updated 2 years ago