更新时间:2023-02-20 13:41:34
OpenID Connect 建立在 OAuth2 之上.
OpenID Connect is built on top of OAuth2.
access_token
可用于调用 Auth0 中的某些 API(例如 /userinfo
)或您在 Auth0 中定义的 API.id_token
是一个 JWT,代表登录的用户.它经常被您的应用使用.refresh_token
(仅供移动/桌面应用程序使用)不会过期(但可撤销),它允许您获得新铸造的 access_tokens
和id_token
.access_token
is useful to call certain APIs in Auth0 (e.g. /userinfo
) or an API you define in Auth0.id_token
is a JWT and represents the logged in user. It is often used by your app.refresh_token
(only to be used by a mobile/desktop app) doesn't expire (but is revokable) and it allows you to obtain freshly minted access_tokens
and id_token
.