Overview#JSON Web Token Claims represents a JSON object whose members are the claims conveyed by the JSON Web Token.
The Claim Names within this object MUST be unique.
Note however, that the set of claims that a JWT must contain to be considered valid is context-dependent and is outside the scope of this specification. When used in a security-related context, implementations MUST understand and support all of the claims present; otherwise, the JSON Web Token MUST be rejected for processing.
There are three classes of JWT Claim Names:
Registered Claim Names are an IANA Registry defined in JSON Web Token (RFC 7519) available in the IANA Registry JSON Web Token Claims Registry or be defined as a URI that contains a collision resistant namespace.
JSON Web Token Claims#
OAuth 2.0 Token Exchange (Still an Internet Draft)#
- "act" (Actor) Claim
- "scp" (Scopes) Claim
- "may_act" (May Act For) Claim
More Information#There might be more information for this subject on one of the following:
- Authentication Method Reference
- Identity Token
- Identity Toolkit ID Token
- JSON Web Tokens
- JWT Claim Value
- JWT Claims Set
- OAuth 2.0 Token Exchange
- OpenID Connect
- Public Claim Names
- Reserved Claim Name