Early Preview

This is currently very much a preview. Please feel free to try things out, but don't be upset if anything is not yet working. Feedback is welcome over on our GitHub Dicussions page.

interface Duende.​IdentityServer.​ResponseHandling.​IIntrospectionResponseGenerator

Assembly: Duende.IdentityServer

Generates the response returned from the token introspection endpoint (RFC 7662). The response describes whether a presented token is active and, if so, includes the token's claims and metadata such as scope, subject, client ID, and expiration. This interface is invoked after the introspection request has been validated and the caller's identity has been confirmed.

Remarks

The default implementation resolves the token from the token store, verifies that the calling API resource is allowed to introspect it, and returns the appropriate claims. Override this interface or extend the default implementation to customize the set of claims returned in the introspection response, for example to add or suppress specific claims for particular API resources.

Methods

ProcessAsync​(Validation.​IntrospectionRequestValidationResult validationResult, System.​Threading.​CancellationToken ct)
Processes a validated introspection request and produces the introspection response.
Returns A dictionary of claim names to claim values that will be serialized as JSON and returned from the introspection endpoint. An inactive token results in a response containing only <c>active: false</c> .
validationResult The result of validating the introspection request, including the token being introspected and the API resource that submitted the request.
ct The cancellation token.