This section guides provides instruction instructions on how to get the user claims of the authorized user as a JWT token with the validation response.
...
| Code Block | ||||
|---|---|---|---|---|
| ||||
{
"http:\/\/wso2.org\/gateway\/applicationname":"Oauth7",
"exp":1452594892,
"sub":"admin@carbon.super",
"http:\/\/wso2.org\/gateway\/subscriber":"admin@carbon.super",
"iss":"http:\/\/wso2.org\/gateway",
"http:\/\/wso2.org\/gateway\/enduser":"admin@carbon.super",
"http:\/\/wso2.org\/claims\/role":"admin,Application\/dewvdew,Application\/Oauth7,Internal\/everyone",
"http:\/\/wso2.org\/claims\/emailaddress":"admin@wso2.com",
"iat":1452593254,
"http:\/\/wso2.org\/claims\/organization":"WSO2"
} |
Signature Verification
Verification of The signature verification can be done similar to IDToken as described below.
...
similiar to the ID token signature verification. See the IDToken Signature Verification
...
topic for more information.