Create Auth Token — DevRev

Creates a JWT corresponding to the requested token type for the authenticated user.

Request

This endpoint expects an object.

grant_typeenumRequired

Allowed values: urn:devrev:params:oauth:grant-type:token-issueurn:ietf:params:oauth:grant-type:token-exchange

Specifies the process of obtaining a token.

requested_token_typeenumRequired

The type of the requested token.

rev_infoobjectRequired

Carries info corresponding to the Rev user to be provisioned and/or issue a Rev session token.

subject_token_typeenumRequired

The type of the subject token.

act_asstringOptional

The unique ID of the Dev user or the service account to impersonate.

audlist of stringsOptional

The expected audience values with respect to the token.

client_idstringOptional

An identifier that represents the application which is requesting the token. If no client_id is present in the request to generate an application access token (AAT), DevRev will generate a client_id. This client_id is only associated with an AAT.

expires_indoubleOptional>=0<=4294967295

The expected validity lifetime of the token in number of days. In practice, the value should be based on the usage of the token.

scopestringOptional

The requested set of scopes associated with the issued token. A space-delimited list of values in which the order of values does not matter.

subject_tokenstringOptional

Represents the entity that requests the token. Not required when requesting an application access token (AAT).

token_hintstringOptional

A hint that identifies the token.

Response

Response for the request to create a new token corresponding to the requested token type.

access_tokenstring

The issued JSON Web Token (JWT) corresponding to the requested token type.

expires_inlong

The validity lifetime of the token specified in seconds since Unix epoch.

token_typeenum

Allowed values: bearer

The type of the issued token. Bearer is the only supported token type.

client_idstringOptional

An identifier that represents the application which is requesting the token. Only present in a response corresponding to an application access token (AAT).

refresh_tokenstringOptional

A token to refresh the issued token.

scopestringOptional

The scopes associated with the issued token. A space-delimited list of values in which the order of values does not matter.

1	curl -X POST https://api.devrev.ai/auth-tokens.create \
2	-H "Authorization: Bearer <token>" \
3	-H "Content-Type: application/json" \
4	-d '{
5	"grant_type": "urn:devrev:params:oauth:grant-type:token-issue",
6	"requested_token_type": "urn:devrev:params:oauth:token-type:aat",
7	"rev_info": {
8	"account_traits": {},
9	"org_traits": {},
10	"user_traits": {},
11	"workspace_traits": {}
12	},
13	"subject_token_type": "urn:devrev:params:oauth:token-type:jwt:auth0"
14	}'

1	{
2	"access_token": "access_token",
3	"expires_in": 1000000,
4	"token_type": "bearer",
5	"client_id": "client_id",
6	"refresh_token": "refresh_token",
7	"scope": "scope"
8	}