Tools, FAQ, Tutorials:
What Is id_token
What is id_token used in OpenID Connect protocol?
✍: FYIcenter.com
"id_token" is Base64URL encoded string returned from the authentication
service provider after the user successfully finishes the authentication process.
"id_token" follows the "RFC 7519 - JWT (JSON Web Token)" to encode authentication information. You should use the following logic to decode the "id_token" value:
Here is example of an id_token string:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9. eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ. SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c
After splitting and Base64URL decoding, we have:
Header = { "alg": "HS256", "typ": "JWT" } Body = { "sub": "1234567890", "name": "John Doe", "iat": 1516239022 } Signature = 0x 49f94ac7044948c78a285d904f87f0a4c7897f7e8f3a4eb2255fda750b2cc397
The "Body" component in an id_token is also called "Payload", or "Claim" of an authentication.
By the way, Base64URL encoding is same as Base64 encoding except for 2 encoding characters: "_" is used instead of "/", and "-" is used instead of "+". This is to make the encoded string URL safe.
⇒ What Is the Authentication Claim in id_token
⇐ OpenID Connect Authorization Code Flow
2022-05-31, 1024👍, 0💬
Popular Posts:
How to add request body examples to my Azure API operation to make it more user friendly? If you hav...
How To Protect Special Characters in Query String in PHP? If you want to include special characters ...
How To Read a File in Binary Mode in PHP? If you have a file that stores binary data, like an execut...
What Is HTML? HTML (HyperText Markup Language) is the standard markup language for creating Web page...
How to use "xsl-transform" Azure API Policy Statement? The "xsl-transform" Policy Statement allows y...