Introspection

The Introspection endpoint allows you to validate and obtain information about an access token issued by Stafbook Auth. This endpoint enables you to verify the authenticity and validity of an access token, ensuring secure communication with Stafbook services. The Introspection endpoint supports the HTTP POST method.

Introspection

POST https://auth.stafbook.com/v1/introspection

Token Introspection

Request Body

Name	Type	Description
token*	string	The access token to be introspected.

200 Successful response with valid and active token

{
  "active": true,
  "iat": {
    "date": "2023-07-13 12:58:45.000000",
    "timezone_type": 1,
    "timezone": "+00:00"
  },
  "nbf": {
    "date": "2023-07-13 12:58:45.000000",
    "timezone_type": 1,
    "timezone": "+00:00"
  },
  "exp": {
    "date": "2024-07-13 12:58:45.000000",
    "timezone_type": 1,
    "timezone": "+00:00"
  },
  "iss": "http://auth.stafbook.com",
  "aud": [
    "ewa"
  ],
  "sub": "99a2fcf2-7811-4563-a4ca-caad51556385",
  "scs": [
    "wagely.validate"
  ]
}

In this updated response, we have included the following additional fields:

iat: The issued-at timestamp indicates when the token was generated.
nbf: The not-before timestamp indicates the time before which the token is not valid.
iss: The issuer identifies the entity that issued the access token.
aud: The audience represents the intended recipients or target applications for the access token.
sub: The subject identifies the user or entity associated with the access token.
scs: The scopes represent the permissions or access rights granted to the access token.

These fields provide more information about the access token and its associated metadata, allowing you to further validate and utilize the token within your application.

401 The provided access token is not valid, has expired, or contains any invalid claims.

{
  "active": false,
  "errors": {
    "iat": [
      "The iat field must be a date before now."
    ],
    "iss": [
      "The selected iss is invalid."
    ],
    "sub": [
      "The selected sub is invalid."
    ],
    "aud.0": [
      "The selected aud.0 is invalid."
    ],
    "scs.0": [
      "The selected scs.0 is invalid."
    ]
  }
}

In this updated response, we have included the following fields:

active: The active field indicates that the access token is inactive.
errors: The errors field provides specific error messages for each invalid field in the token.

The errors field contains a dictionary where each key represents a specific field in the access token, and the corresponding value is an array of error messages related to that field. In this sample response, we have included example error messages for various fields (iat, iss, sub, aud.0, and scs.0) to demonstrate how error information can be provided.

These error messages can help you identify and handle specific issues related to the access token, allowing you to provide appropriate feedback or take necessary actions in your application.

Please note that the Introspection endpoint is currently the only available public endpoint in the Stafbook Auth API. Refer to this documentation for any updates on additional endpoints or functionality.

Using the Introspection endpoint, you can validate access tokens and obtain important information associated with them, ensuring secure authentication and authorization with Stafbook services.