List Token Information

Overview

This endpoint retrieves a paginated list of all OAuth tokens issued for the entity. It includes metadata such as roles, scopes, expiration times, and creation dates. This is useful for auditing, monitoring active sessions, and managing token lifecycle.

Endpoint Details

DefinitionDescription
Endpointhttps://api.paas.sandbox.co.passportfintech.com/v1/iam/oauth/tokens
MethodGET
HeadersAccept-Language, Content-Length, Content-Type: application/json, Authorization
AuthenticationAccess Token (Bearer Token)

Request Body

This endpoint does not require a request body.

Example Request

JSON
Copy

Response

  • HTTP Status Code 200 OK.

Example of Response

JSON
Copy

Common Errors and Handling

HTTP Status CodeMeaningDescription
400Bad RequestInvalid query parameters or malformed request
401UnauthorizedBearer token missing, expired, or does not include iam.oauth.tokens.list.get scope
403ForbiddenAuthenticated user lacks permission to view token list
500Internal Server ErrorUnexpected error. Retry or contact support if issue persists

Best Practices

  • Use the pagination_info object to iterate through all pages when retrieving tokens.
  • Regularly audit active tokens to ensure compliance with security policies.
  • Immediately revoke compromised or unused tokens using the Revoke Token endpoint.
  • Never expose raw tokens in logs or client-side applications.
  • Use roles and scopes to enforce least-privilege access models.
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Revoke Access Token

Contactar Passport

On This Page
List Token InformationOverviewEndpoint DetailsRequest BodyExample RequestResponseExample of ResponseCommon Errors and HandlingBest Practices