Access Token Response

Suggest Edits

In addition to an access token, the token response returns an ID Token which includes the sub — an identifier that pairs a single user with a particular client_id. After receiving the sub, this ID gets stired in your user database for reference. Do not transmit this sub to your client app.

Sample Token Response:

HTTP/1.1 200 OK
Content-type: application/json 
Cache-control: no-cache

{
    "access_token": "....",
    "token_type": "Bearer",
    "refresh_token": "8xLOxBtZp8",
    "expires_in": 3600,
    "correlation_id”:”xxxxx”,
    "id_token": "..."
}

Updated about 1 year ago

What’s Next

Decoding the ID Token

Did this page help you?