Token Verification and Authorisation
POST/service/data-space/:organisationId/validate-access
The Token Verification and Authorisation endpoint for an organisation in regards to a Data Marketplace. An Access Token issued as a result of a Pull-Data request can be verified here, and an authorisation decision can be made against the requested resource (defined by OpenAPI method and path). The resource is checked against the OpenAPI specification of the underlying Data Agreement within the Data Disclosure Agreement Record's Template connected to the Access Token.
Request
Path Parameters
The ID of the organisation
- application/json
Body
The JWT Access Token to be verified and authorised
The HTTP Method to be checked against the OpenAPI specification
The path to be checked against the OpenAPI specification
Responses
- 200
- headers
Access token verification result
- application/json
- Schema
- Example (from schema)
Schema
- MOD1
- MOD2
Whether the access token was verified and authorised
Possible values: [anonymous, pii]
The data classification of the requested resource
decodedClaims objectrequired
The decoded JWT claims. The fields listed below will be present; additional claims are allowed.
The audience of the JWT
Possible values: [anonymous, pii]
The data classification of the requested resource
The ID of the Data Disclosure Agreement Record associated with this token
The expiration time of the JWT
The issued at time of the JWT
The issuer of the JWT
The unique identifier for the JWT
The decoded JWT claims. The fields listed below will be present; additional claims are allowed.
Whether the access token was verified and authorised
The reason why the access token verification failed
{}