IdP API

The IdP API is used to validate issued access tokens with our IoT identity provider.

Introspection Endpoint

Use this endpoint to verify the access tokens issued by the IdP. This endpoint is mainly used by the IoT platform but may also be used by IoT devices to verify the received access token.

Introspect token

POST https://iot-idp.demo.apps.iothentix.io/idp/introspect

Validate the access token with the IdP.

Headers

Name	Type	Description
Authorization	String	Basic authentication

Request Body

Name	Type	Description
token*	String	Access token issued by the identity provider

200: OK The provided access token is VALID.

{
    "active": true,
    "sub": "test.device.01",
    "scope": "tenant.demo refresh.token temp",
    "iss": "https://iot-idp.demo.apps.iothentix.com/",
    "exp": 1658179642
}

401: Unauthorized The basic authentication failed.

{
    "error": {
        "code": 401,
        "status": "Unauthorized",
        "request": "<REQUEST_ID>",
        "message": "The request could not be authorized"
    }
}

200: OK The provided access token is INVALID.

{
    "active": false
}

500: Internal Server Error Internal error in the IdP infrastructure.

{
    "error": 
    {
        "code": 500,
        "status": "Internal Server Error",
        "request": "<REQUEST_ID>",
        "message": "An internal server error occurred, please contact the system administrator"
    }
}

404: Not Found The resource could not be found or the wrong HTTP method was used.

{
    "error": {
        "code": 404,
        "status": "Not Found",
        "request": "<REQUEST_ID>",
        "message": "The requested resource could not be found"
    }
}