Introspect

Introspect

curl --request POST \
  --url https://app.attio.com/oauth/introspect

{
  "active": true,
  "scope": "<string>",
  "client_id": "<string>",
  "token_type": "<string>",
  "exp": {},
  "iat": 123,
  "sub": "<string>",
  "aud": "<string>",
  "iss": "<string>",
  "authorized_by_workspace_member_id": "<string>",
  "workspace_id": "<string>",
  "workspace_name": "<string>",
  "workspace_slug": "<string>",
  "workspace_logo_url": {}
}

POST

oauth

introspect

Introspect

curl --request POST \
  --url https://app.attio.com/oauth/introspect

{
  "active": true,
  "scope": "<string>",
  "client_id": "<string>",
  "token_type": "<string>",
  "exp": {},
  "iat": 123,
  "sub": "<string>",
  "aud": "<string>",
  "iss": "<string>",
  "authorized_by_workspace_member_id": "<string>",
  "workspace_id": "<string>",
  "workspace_name": "<string>",
  "workspace_slug": "<string>",
  "workspace_logo_url": {}
}

Check whether an access token is valid, and if so, what scopes and identity it grants. A bearer token should be passed in the Authorization header of the request.

Response

Inactive Token

active

boolean

required

Whether the token is currently active and usable. Returns false for invalid or expired tokens.

Active Token

active

boolean

required

Whether the token is currently active and usable. Returns true for valid tokens.

scope

string

required

A space-separated list of scopes associated with this token.

client_id

string

required

The app ID of the OAuth app that requested this token.

token_type

string

default:"Bearer"

required

The type of token. Always "Bearer" for tokens acquired via the OAuth 2.0 flow.

exp

number | null

required

The time at which this token will expire, if set, as a number of seconds since January 1 1970 UTC.

iat

number

required

The time at which this token was issued, as a number of seconds since January 1 1970 UTC.

sub

string

required

Since Bearer tokens grant workspace-level permissions, this property contains the workspace ID.

aud

string

required

The intended audience for this token. For Bearer tokens this is the same as the client_id.

iss

string

default:"attio.com"

required

The issuer of the token. Always "attio.com".

authorized_by_workspace_member_id

string

required

The ID of the workspace member who authorized this token initially.

workspace_id

string

required

The ID of the workspace the token is scoped to.

workspace_name

string

required

The name of the workspace the token is scoped to.

workspace_slug

string

required

The slug of the workspace the token is scoped to.

workspace_logo_url

string | null

required

The logo URL of the workspace the token is scoped to.

Token Call recording created

Introduction

How-to guides

Tutorials

Endpoint reference

Webhook reference

Response

Inactive Token

Active Token

Introduction

How-to guides

Tutorials

Endpoint reference

Webhook reference

​Response

​Inactive Token

​Active Token

Response

Inactive Token

Active Token