![]() The version is based on the endpoint from where it was requested. The v1.0 and v2.0 ID tokens have differences in the information they carry. ![]() These versions determine the claims that are in the token. There are two versions of ID tokens available in the Microsoft identity platform: v1.0 and v2.0. For more information about claims-based authorization, see Secure applications and APIs by validating claims. For more information about the claims used in an ID token, see the ID token claims reference. The claims provided by ID tokens can be used for UX inside your application, as keys in a database, and providing access to the client application. Access tokens are used for authorization. ID tokens shouldn't be used for authorization purposes. Third-party applications are intended to understand ID tokens. ![]() Information in ID tokens enables the client to verify that a user is who they claim to be. They can be sent alongside or instead of an access token. ![]() The authorization server issues ID tokens that contain claims that carry information about the user. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |