Expand Access Token

Display the content of the given access token with expanded claims if the token is valid.
If the token is invalid or expired, an error will be returned.
Note: Enter the Access Token in Bearer format i.e. 'Bearer XXX' where XXX is the content of a VIDB access token using the Authorize Button.

Request

URI

GET

https://{api_host}/acs/t/{tenant}/expand-access-token

COPY

Path Parameters

string

tenant

Required

The VMware Identity Services tenant ID

tenant example

my-tenant

Query Parameters

string

format

Optional

Constraints: default: raw

Specifies the format for the returned expanded token.

raw (default) - Returns the data as a raw JSON object.
jwt - Returns the data as a signed JSON Web Token.

format example

raw

Possible values are : raw, jwt,

Authentication

This operation uses the following authentication methods.

basic_auth

admin

Responses

200

The token expand returned successfully.

Returns expandAccessToken_200_response of type(s) application/json

OneOf

This class returns at least one of the following:

InlineexpandAccessToken_200_response0

InlineexpandAccessToken_200_response1

{
    "claims": {
        "claims": {}
    },
    "fingerprint": "string",
    "exp": 0,
    "iat": 0,
    "sub": "string",
    "ovl": "string",
    "ovc": [
        "string"
    ],
    "group_names": [
        "string"
    ],
    "group_ids": [
        "string"
    ],
    "auth_time": 0,
    "authorization_details": [
        {
            "type": "string",
            "roles": [
                "string"
            ],
            "resources": [
                "string"
            ]
        }
    ]
}

400

The token is invalid or expired.

Operation doesn't return any data structure

Code Samples

COPY

                    curl -H 'Authorization: <value>' https://{api_host}/acs/t/{tenant}/expand-access-token

On This Page

Description

Request

Path Parameters

Query Parameters

Authentication

Response

200 Response Body

Errors

Authentication Operations