On Tue, Mar 28, 2017 at 3:29 PM, Hanen Ben Rhouma <[email protected]> wrote:
> Hi, > > I have a question regarding oauth2 token validation: when I use > client_credentials as grant type the generated token isn't valid (used the > token validate() soap call) but the /oauth2/userinfo returns correctly the > user attributes. Any explanation please? > > You mean an expired token? Can you verify status of the token using the introspection endpoint as well? curl -k -u *<admin_username>*:*<admin_password>* -H 'Content-Type: application/x-www-form-urlencoded' -X POST --data 'token=<ACCESS_TOKEN>' https://localhost:9443/oauth2/introspect > Regards, > Hanen > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > >
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
