Refresh Token is a JWT

Synopsis

Checks if refresh tokens are JWTs.

Description

This feature checks if refresh tokens issued by the provider are JSON Web Tokens (JWTs). It does not check the signature of the token.

Explanation of Values

For this feature the following possible values are defined:

• Yes

  Indicates that refresh tokens are JWTs.
• No

  Indicates that refresh tokens are not JWTs.
• Not Yet Checked

  This is a community feature and it was not yet checked so we cannot make any statement about this feature.

Relevant Standards

For more information please also refer to the following standards:

• RFC7519

Other Related Features

See also:

• Access Token is a JWT
• Access Token Signature Valid