2. Obtaining Authenticated User Information from the Access Token

The SP can validate the access token based on the information obtained in previous step. In case the SP needs to know the user who is authenticated with the presented access token then it can also fet

cURL Request

curl --location --request GET 'https://stg-id.uaepass.ae/idshub/userinfo' \
--header 'Authorization: Bearer <<Token to get the authenticated user profile>>'

API detail to get user info

GET https://stg-id.uaepass.ae/idshub/userinfo

Headers

Name

Type

Description

Authorization*

String

Bearer {access token received from client app or required to validate}

{
"sub": "800F475AC0E7A9ED01B2D5D2C25A59B3",
…
…………
………… "acr":
"urn:safelayer:tws:policies:authentication:level:high", "mobile": "9715555555555",
"amr": [ "urn:safelayer:tws:policies:authentication:adaptive:methods:mobileid", "urn:uae:authentication:method:verified"
] }

Previous1. Verify access token API using Basic Authentication NextValidation Decisions

Last updated 1 year ago