<meta charset="UTF-8">
<meta name="robots" content="noindex,nofollow" />
<link rel="shortcut icon" type="image/x-icon" href="/wiki/images/favicon.ico" />
<link rel="icon" type="image/x-icon" href="/wiki/images/favicon.ico" />

<pre>
!!! Overview
[{$pagename}] represents a [JSON] object whose members are the claims conveyed by the [JSON Web Token]. 

The Claim Names within this object __[MUST] be unique__. 

Note however, that the set of claims that a [JWT] must contain to be considered valid is [context]-dependent and is outside the scope of this specification. When used in a security-related context, implementations [MUST] understand and support all of the claims present; otherwise, the [JSON Web Token] __MUST be rejected__ for processing.

There are three classes of JWT Claim Names: 
* [Reserved Claim Name]
* [Public Claim Names]
* [Private Claim Names].

[Registered Claim Names|Reserved Claim Name] are an [IANA Registry] defined in [JSON Web Token] ([RFC 7519]) available in the [IANA Registry] [JSON Web Token Claims Registry] or be defined as a [URI] that contains a collision resistant [namespace]. 

!! [{$pagename}]

%%zebra-table
%%sortable
%%table-filter
||Claim Name||Claim Description||Type||Change Controller||Reference
|[exp]|[Expiration Time|Not After]|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.4|RFC 7519]
|[nbf]|[Not Before]|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.5|RFC 7519]
|[iat]|Issued At|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.6|RFC 7519]
|[iss]|[Issuer]|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.1|RFC 7519]
|[aud]|Audience|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.3|RFC 7519]
|[prn]|Audience|[Reserved Claim Name]|[IESG]|Was in draft but Dropped in RFC (Same as sub)
|[jti]|[JWT ID]|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.7|RFC 7519]
|[sub]|[Subject]|[Reserved Claim Name]|[IESG]|[RFC7519 Section 4.1.2|RFC 7519]
|[name]|[Full name]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[given_name]|[Given Name](s) or [First Name](s)|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[family_name]|[Surname](s) or [Last Name](s)|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[middle_name]|[Middle Name](s)|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[nickname]|[Casual Name]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[preferred_username]|[Shorthand Name] by which the End-User wishes to be referred to|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[profile]|Profile page [URL]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[picture]|Profile picture [URL]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[website]|[Web page|Website] or blog [URL]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[email]|Preferred [e-mail address|Email Address]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[email_verified]|True if the [e-mail address|Email Address] has been verified; otherwise false|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[gender]|Gender|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[BirthDate]|Birthday|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[zoneinfo]|[Timezone]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[locale]|[Locale]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[phone_number]|Preferred [telephone number|Phone Number]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[phone_number_verified]|True if the [Phone Number] has been verified; otherwise false|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[address]|Preferred postal address|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[updated_at]|Time the information was last updated|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 5.1|OpenID Connect Core 1.0]
|[azp]|Authorized party - the party to which the [id_token] was issued|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[nonce]|Value used to associate a [Client] [session] with an [id_token]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[auth_time]|Time when the [authentication] occurred|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[at_hash]|[Access Token] [hash] value|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[c_hash]|Code [hash] value|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 3.3.2.11|OpenID Connect Core 1.0]
|[acr]|[Authentication Context Class Reference]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[amr]|[Authentication Method Reference]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 2|OpenID Connect Core 1.0]
|[sub_jwk]|[Public Key] used to check the [signature|JSON Web Signature] of an [id_token]|[OpenID Connect Standard Claims]|[OpenID Artifact Binding Working Group]|[OpenID Connect Core 1.0 Section 7.4|OpenID Connect Core 1.0]
|[cnf]|[JWT Confirmation Methods|Confirmation Claim]|[OpenID Connect Standard Claims]|[IESG]|[Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)] Section 3.1
/%
/%
/%


! [OAuth 2.0 Token Exchange] (Still an [Internet Draft])
* &quot;act&quot; (Actor) Claim
* &quot;scp&quot; (Scopes) Claim
* &quot;may_act&quot; (May Act For) Claim


!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
</pre>