Decoding the ID Token

The ID Token needs decoding. Once you decode the JWT payload, you will see it contains claims about the authentication of your end-user. As a best practice, validate the ID Token after decoding it. Specifically, verify the signature and claims contained within the ID Token. For more information about each parameter, refer to Integration options on the web.

Sample Decoded ID Token:

{   
    "type"="at+jwt",  
    "kid":"xxx"
}

{
    "iss": https://mno.com,
    "sub": "mccmnc-client0001",  
    "aud": "ccid-sp00001",
    "nonce": "n-0S6_WzA2Mj",
    "exp": 1311281970,
    "iat": 1311280970,
    "auth_time": 1311280969,
    "acr": "a3",
    ...
}

Did this page help you?