Authorizes the input request.

1min
POST
This endpoint validates the input token. Tokens should be parsed and validated in regular web, native, and single-page applications to make sure the token isn’t compromised and the signature is authentic. Tokens should be verified to decrease security risks if the token has been, for example, tampered with, misused, or has expired. JWT validation checks the structure, claims, and signature to assure the least amount of risk.
Header Parameters
X-COREOS-TID
string
*
X-Coreos-Access
string
*
X-Coreos-Request-Id
string
*
X-Coreos-Auth
string
X-Coreos-Origin-Token
string
Body Parameters
body
AuthorizationRequest
path
string
*
method
string<get | put | post | delete | patch>
*
Responses
200
OK - The request succeeded.
SuccessAuthResponse
data
object
error
Error
request
Request
400
Bad request - The server is unable to process the request due to something that is perceived to be a client error
ErrorResponse
error
Error
request
Request
401
Unauthorized -  The client's identity is unknown to the server. Verify that you are accessing the correct tenant and that your client ID and client secret are valid on that tenant.
ErrorResponse
Example
[object Object]
error
Error
request
Request
403
Forbidden - The client's identity is known to the server, but it does not have access rights to the requested resource. Verify that you're using the correct client ID and client secret or grant the client the necessary roles to access the resource.
ErrorResponse
Example
[object Object]
error
Error
request
Request
404
Not found - The server can not find the requested resource.
ErrorResponse
error
Error
request
Request
503
Server error - The server is not ready to handle the request. This could be due to maintenance downtime or system resource constraints.
ErrorResponse
error
Error
request
Request
Curl
JS
Ruby
Python
curl --location --globoff 'https://{tenantSubdomain}.getos1.com/core/api/v1/ext-auth/token/authorize' \
--header 'Accept: application/json' \
--header 'Content-Type: application/json' \
--data '{
  "path": "",
  "method": ""
}'
curl --location --globoff 'https://{tenantSubdomain}.getos1.com/core/api/v1/ext-auth/token/authorize' \
--header 'Accept: application/json' \
--header 'Content-Type: application/json' \
--data '{
  "path": "",
  "method": ""
}'
Responses
200
400
401
403
404
503
// OK - The request succeeded. 
{
  "data": {
    "response": ""
  },
  "error": {
    "code": "",
    "description": "",
    "additionalInfo": {}
  },
  "request": {
    "uri": "",
    "method": "",
    "queryString": "",
    "body": {}
  }
}
// OK - The request succeeded. 
{
  "data": {
    "response": ""
  },
  "error": {
    "code": "",
    "description": "",
    "additionalInfo": {}
  },
  "request": {
    "uri": "",
    "method": "",
    "queryString": "",
    "body": {}
  }
}
﻿
﻿
Updated 03 Aug 2023
Did this page help you?
Validate the input token.
Create a new plugin