Claims contained in a validated OAuth 2.0 access token.
[key: string]: unknown
Additional custom or provider-specific claims.
aud:string|string[]
Intended audience(s) of the token.
optionalclient_id:string
Client ID of the application the token was issued to.
exp:number
Expiration time of the token (Unix epoch seconds).
iat:number
Time at which the token was issued (Unix epoch seconds).
iss:string
Issuer identifier - the authorization server that issued the token.
optionaljti:string
JWT ID (unique identifier for the token).
optionalnbf:number
Not-before time (Unix epoch seconds).
optionalscope:string
OAuth scope associated with the token.
sub:string
Subject identifier — uniquely identifies the authenticated user.