Standard JWT claims shared between ID tokens and access tokens.
[key: string]: unknown
Additional custom or provider-specific claims.
aud:string|string[]
Intended audience(s) of the token.
exp:number
Expiration time of the token (Unix epoch seconds).
iat:number
Time at which the token was issued (Unix epoch seconds).
iss:string
Issuer identifier - the authorization server that issued the token.
optionalnbf:number
Not-before time (Unix epoch seconds).
sub:string
Subject identifier — uniquely identifies the authenticated user.