Token
The token endpoints support the following actions:
-
The token endpoint
/{{envID}}/as/tokenis used by the client to obtain an access token by presenting its authorization grant. Note that authentication requirements to this endpoint are configured by the application’stokenEndpointAuthMethodproperty. For information about the application’stokenEndpointAuthMethodproperty, refer to the "Applications OIDC settings data model" table in Application Operations. -
The token introspection endpoint
/{{envID}}/as/introspectreturns the active state of an OAuth 2.0 token and the claims specified in RFC 7662 Section 2.2. The request requires the token parameter, which is the token string. -
The token revocation endpoint
{{envID}}/as/revokerevokes the token specified in the request. Note that this operation does not apply to the tokens issued for the PingOne API resource.