Class DefaultTokenIntrospectionResponseComposer

java.lang.Object
com.nimbusds.openid.connect.provider.spi.tokens.introspection.BaseTokenIntrospectionResponseComposer
com.nimbusds.openid.connect.provider.spi.tokens.introspection.DefaultTokenIntrospectionResponseComposer
All Implemented Interfaces:
Lifecycle, TokenIntrospectionResponseComposer

The default Connect2id server implementation of the SPI for composing token introspection (RFC 7662) responses.

Outputs the following parameters, in addition to those output by the parent BaseTokenIntrospectionResponseComposer:

  • "act" actor, in impersonation and delegation scenarios
  • "dat" additional data
  • custom top-level parameters

The following OpenID claims related access token parameters are not output as they are intended for the internal use, such as at the UserInfo endpoint, and therefore should not be exposed to external resources.