TokenGrant

Submit a subject token and receive a Trovi authentication token

Users must obtain an authentication token from one of the supported Trovi identity providers, and then submit that subject token to the TokenGrant endpoint in order to obtain a Trovi token. All Trovi tokens adhere to the following properties:

Expire 5 minutes after they are issued
Are in the JWT format (JWS string)

Token requests adhere to the following properties:

RFC 8693 - OAuth 2.0 Token Exchange
The only supported grant type is "token_exchange"
Subject tokens must be in the JWT format (JWS string)

The following scopes are available for all Trovi tokens. Currently, any requested scopes will be granted to any user. This is subject to change.

artifacts:read - Read all artifacts which are accessible to the user
artifacts:write - Edit all artifacts for which the user is an owner or author, and create new artifacts
artifacts:write_metrics - Update artifact access metrics

PreviousToken NextMeta

Last updated 2 years ago