Contents x
    Token Exchange
    • 07 Aug 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Token Exchange

    • Updated on 07 Aug 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    Post
    /auth/realms/{PLAINID_TENANT_NAME}/protocol/openid-connect/token

    Notice

    Accessing the Policy Management APIs is through a dedicated domain/URL, according to your PlainID Tenant Location
    • United States (US) - `https://auth.us1.plainid.io`
    • Europe (EU) - `https://auth.eu1.plainid.io`
    • Canada (CA) - `https://auth.ca1.plainid.io`
    • Local PAA - `https://auth.plainid.local`
    Header parameters
    Content-Type
    string


    Path parameters
    PLAINID_TENANT_NAME
    string Required


    Body parameters



    client_id
    string 

    This is a static value

    Default"plainid"
    subject_token
    string 


    grant_type
    string 

    Default"urn:ietf:params:oauth:grant-type:token-exchange"
    subject_token_type
    string 

    Default"urn:ietf:params:oauth:token-type:jwt"
    subject_issuer
    string 

    This is a static value

    Default"tenant_idp"
    Responses
    200

    OK
    Use the Access Token from the response in the Admin API call

    400

    Bad Request

    401

    Unauthorized

    403

    Forbidden

    404

    Not Found

    500

    Internal Server Error

    501

    Not Implemented

    "{\n    \"access_token\": \"\",\n    \"expires_in\": 900,\n    \"refresh_expires_in\": 1800,\n    \"refresh_token\": \"\",\n    \"token_type\": \"Bearer\",\n    \"not-before-policy\": 0,\n    \"session_state\": \"83eb9966-a154-4a1a-8f9e-420b6b4935db\",\n    \"scope\": \"profile email\"\n}"

    string 


    Was this article helpful?
    What's Next