Token customization and introspection
PingOne lets you customize the content of access tokens by adding custom resource attributes and their values to the token. You can use the access token customization APIs to convey additional information about the user to applications. For more information, refer to Resource attributes in the PingOne Platform API Reference.
ID token customization
You can also customize the content of OIDC ID tokens by adding custom user claims to the token. For more information, refer to Attribute mappings in the PingOne Platform API Reference.
Token analysis
The PingOne platform supports endpoints to returns the active state of an OAuth 2.0 token and all of the claims in the token. The request takes a token parameter, which is the token string. For more information, refer to Token introspection in the PingOne Platform API Reference.
|
You can use the PingOne JWT Decoder located on the Developer Tools page (JWT Decoder) to view the claims information in a JSON Web Token. This utility asks you to provide the JWT token, and it returns a Header (the type of encoded object in the payload), the Payload (the JWT claims set), and the Signature (an encoding of the Header and Payload). |