VMware Developer Documentation
API Reference PowerCLI Reference
[{"label":"Latest (v1.0)","version":"latest"}]
csp
CSP API Identity and Access Management - Cloud Services Platform Authentication

Get Token Introspection Details

Description

The call is protected by HTTP Basic authentication with client_id and client_secret. Note: when using Public OAuth clients, Authorization is required using the format ‘Basic Base64_Encode(client_id:)’ with empty client_secret. This endpoint follows the token introspection specifications defined in https://tools.ietf.org/html/rfc7662. Only introspection of refresh tokens is supported. Include the parameter using application/x-www-form-urlencoded format in the HTTP request body.

Access Policy

Role User Accounts Service Accounts (Client Credentials Applications)
Anonymous ✔️ ✔️

Request

Request

URL

URL

post
https://{api_host}/csp/gateway/am/api/auth/introspect
Copy
Header Parameters

Header Parameters

string
authorization Required

Basic auth with client credentials [Basic Base64_Encode(client_id:client_secret)] Note: when using Public OAuth clients, Authorization is required using the format ‘Basic Base64_Encode(client_id:)’ with empty client_secret.

Parameter Serialization Style: SIMPLE Explode:false

Request Body

Request Body

GetTokenIntrospectionDetails of mimetype application/x-www-form-urlencoded Optional

The application/x-www-form-urlencoded form data type.

{
	"token": "string"
}
string
token Required

The token to be introspected.
Authentication

Authentication

This operation uses the following authentication methods.

Bearer

Response

Response

Response Body

Response Body

200 OK

Returns TokenIntrospectionResponse of type application/json

JSON object representing the refresh token’s information. The ‘active’ top-level member will indicate whether or not the presented token is currently active. If active, additional members will be present in the response.

{
	"active": false,
	"exp": 0,
	"iat": 0,
	"orgId": "string",
	"sub": "string",
	"token_type": "string"
}
boolean
active Optional

Indicator of whether or not the presented token is currently active.
integer as int64
exp Optional

The timestamp the token expires at (measured in number of seconds since 1/1/1970 UTC).
integer as int64
iat Optional

The timestamp the token was created at (measured in number of seconds since 1/1/1970 UTC).
string
orgId Optional

Unique identifier (GUID) of the organization.
string
sub Optional

The unique identifier of the user, on behalf of which the token was issued.
string
token_type Optional

The type of the token.
Errors

Errors

CspErrorResponse
400

Authorization header must be specified | Invalid authorization header. Missing “Basic” prefix | Invalid authorization header | Bad Request - Client ID in path doesn’t match the Client ID in the Basic Authorization Header.
CspErrorResponse
404

The requested resource could not be found
CspErrorResponse
409

The request could not be processed due to a conflict
CspErrorResponse
429

The user has sent too many requests
CspErrorResponse
500

An unexpected error has occurred while processing the request
Code Samples

Code Samples

cURL Command

curl -X POST -H "authorization: string" -H "Content-Type: application/x-www-form-urlencoded" -d '{"token":"string"}' https://{api_host}/csp/gateway/am/api/auth/introspect

Generated on: 09 Jun 23 08:13 UTC
[{"label":"Latest (v1.0)","version":"latest"}]
csp
On This Page
Authentication Operations
post
Get API Token Details
post
Get Access Token By API Refresh Token
post
Get Identity Provider Logout URL
post
Get Identity Provider Logout URL V2
get
Get JSON Web Keys
get
Get Public Key
post
Get Token For Authorization Grant Type
post
Get Token Introspection Details
post
Revoke Token
Feedback

Was this page helpful?

© 2023 VMware Inc. Terms of Use Privacy Your California Privacy Rights Accessibility Trademarks Glossary Help Contact Us