Step 22: Token Introspection
POST {{authPath}}/{{envID}}/as/introspect
You can use the POST /{{envID}}/as/introspect endpoint operation to examine the token to verify that the p1.permissions claim exists and shows the application permissions you assigned to the application role.
For more information about token introspection for access tokens, see Token Introspection (Access Token) in the PingOne Platform API Reference.
Request Body
[{"name"=>"token", "value"=>"{{customResourceAccessToken}}", "datatype"=>"string"}, {"name"=>"client_id", "value"=>"{{appID}}", "datatype"=>"string"}, {"name"=>"client_secret", "value"=>"{{appSecret}}", "datatype"=>"string"}]
HEADERS
| Key | Datatype | Required | Description |
|---|---|---|---|
Authorization | string | ||
Content-Type | string |