Tools, FAQ, Tutorials:
What Is id_token
What is id_token used in OpenID Connect protocol?
✍: FYIcenter.com
"id_token" is Base64URL encoded string returned from the authentication
service provider after the user successfully finishes the authentication process.
"id_token" follows the "RFC 7519 - JWT (JSON Web Token)" to encode authentication information. You should use the following logic to decode the "id_token" value:
Here is example of an id_token string:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9. eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ. SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c
After splitting and Base64URL decoding, we have:
Header = { "alg": "HS256", "typ": "JWT" } Body = { "sub": "1234567890", "name": "John Doe", "iat": 1516239022 } Signature = 0x 49f94ac7044948c78a285d904f87f0a4c7897f7e8f3a4eb2255fda750b2cc397
The "Body" component in an id_token is also called "Payload", or "Claim" of an authentication.
By the way, Base64URL encoding is same as Base64 encoding except for 2 encoding characters: "_" is used instead of "/", and "-" is used instead of "+". This is to make the encoded string URL safe.
⇒ What Is the Authentication Claim in id_token
⇐ OpenID Connect Authorization Code Flow
2022-05-31, 1652🔥, 0💬
Popular Posts:
Where to get the detailed description of the json_encode() Function in PHP? Here is the detailed des...
What is Azure API Management Publisher Dashboard? Azure API Management Publisher Dashboard is an Azu...
How to use the "forward-request" Policy Statement to call the backend service for an Azure API servi...
How to use "link" command tool to link objet files? If you have object files previously compiled by ...
Where to find tutorials on OpenID? Here is a large collection of tutorials to answer many frequently...