Decoding the ID Token

Suggest Edits

The ID Token needs decoding. Once you decode the JWT payload, you will see it contains claims about the authentication of your end-user. As a best practice, validate the ID Token after decoding it. Specifically, verify the signature and claims contained within the ID Token. For more information about each parameter, refer to Integration options on the web.

Sample Decoded ID Token:

{   
    "type"="at+jwt",  
    "kid":"xxx"
}

{
    "iss": https://mno.com,
    "sub": "mccmnc-client0001",  
    "aud": "ccid-sp00001",
    "nonce": "n-0S6_WzA2Mj",
    "exp": 1311281970,
    "iat": 1311280970,
    "auth_time": 1311280969,
    "acr": "a3",
    ...
}

Updated about 1 year ago

What’s Next

Requesting User Information

Did this page help you?