Multi-tenancy authentication API reference - authenticate m2m token

Authenticate Access Token

Authenticate an access token issued by Stytch from the Token endpoint .

M2M access tokens are JWTs signed with the project's JWKs, and can be validated locally using any Stytch client library.

You may pass in an optional set of scopes that the JWT must contain in order to enforce permissions.

Body parameters

access_token* string

required_scopes array[strings]

max_token_age number

clock_tolerance_seconds number

Response fields

client_id string

scopes array[strings]

custom_claims object

# This is a custom method that doesn't directly hit an API endpoint, so it's only available in our SDKs.

RESPONSE

{
    "client_id": "m2m-client-test-d731954d-dab3-4a2b-bdee-07f3ad1be885",
    "scopes": ["read:users","write:users"],
    "custom_claims": {
        "contact_email": "notice@example.com"
    }
}