Fanatics EcoSystem
  • Fanatics ID
  • Loyalty
  • Start Here
  • Setup
  • Single Sign On
    • Authorization
    • Code Exchange
    • Refresh Token
    • Logout
    • ID Token
    • Environments
    • Scopes
    • Account Management
    • OpenID Config
  • Server to Server
    • Authentication
    • Environments
    • Scopes
  • Point of Sale
    • Assertion Usage
Powered by GitBook
On this page
  1. Single Sign On

ID Token

PreviousLogoutNextEnvironments

Last updated 1 month ago

The id_token response value is a JWT. The payload of the JWT includes the following. For more details please see , & . Also the contents of the ID Token MUST be validated in the same manner as for the Authorization Code Flow. Please see for more details.

Parameter
Description
Example

iss

Issuer Identifier for the Issuer of the response. This is the redirect_uri you provided during login or registration.

https://localhost:8443

sub

This is your unique ID for this user. We call it the Tenant FanID. The Tenant FanID is unique for every user for every integrating tenant.

3597CFF2-48DA-4243-ABF4-94DDD5F94AFC

aud

Audience(s) that this ID Token is intended for. This is your client id.

your-test-client-id-here

exp

Expiration time on or after which the ID Token MUST NOT be accepted for processing.

1683230817

iat

Time at which the JWT was issued.

1683230817

auth_time

Time when the End-User authentication occurred.

1683227217

nonce

String value used to associate a Client session with an ID Token, and to mitigate replay attacks.

MWm7UiN6SKrPGdVk

amr

Authentication Methods References. JSON array of strings that are identifiers for authentication methods used in the authentication.

["pwd"]

jti

JWT ID claim which is a unique identifier for the JWT

40966842-7FC6-407B-88B4-5AF8F24CA2B4

nbf

The not before claim identifies the time before which the JWT MUST NOT be accepted for processing.

1683227217

ID Token
jti
nbf
ID Token Validation