Document toolboxDocument toolbox

Access Tokens (TINFO Useradmin)

Owned by Frode Nilsen (Unlicensed)
Last updated: 18 May 2018Version comment
1 min read

TINFO Userinfo uses the default Access Token format of the OIDC Provider from BankID, adapted to the Client Credential flow that is used by TINFO Userinfo.

Eglibile OIDC Clients can request Access Tokens for TINFO Useradmin by invoking the Token endpoint using Client Credential Grant and supplying appropriate scope values. The Access Token must be added as an OAuth2 Bearer Token to subsequent requests to endpoints for the TINFO Useradmin API.

The following is an example of a valid Access Token for TINFO Useradmin

{
  "jti": "d53ac783-1a48-41a0-9616-4e10cc4293b9",
  "exp": 1520673178,
  "nbf": 0,
  "iat": 1520672878,
  "iss": "https://prototype.bankidnorge.no/auth/realms/Systemtest",
  "aud": [
    "tinfo",
  ],
  "sub": "2ed4c4c6-63b8-4f0a-8279-74fbf1b5da11",
  "typ": "Bearer",
  "azp": "frodens-test",
  "auth_time": 0,
  "session_state": "c5ff2648-7ece-4658-98b6-b5d2627c81ae",
  "acr": "1",
  "allowed-origins": [],
  "resource_access": {
    "tinfo": {
      "roles": [
        "UnrollEndUser",
        "IsEnrolled"
      ]
    }
  },
  "clientId": "frodens-test",
  "clientHost": "80.86.138.154",
  "clientAddress": "80.86.138.154"
}