Auth Token Issue
OIDC token endpoint issuing JWT access and refresh tokens after verifying user credentials, SSO assertion, or client credentials.
API Endpoint Application active
POST /oauth/token handles the OIDC authorization code, client credentials, and refresh token grant types. Returns a signed JWT with tenant-scoped claims. MFA challenge step-up is triggered when the tenant policy requires it and the user has not recently authenticated with a second factor.
Relationships
Composes outgoing 1
Part of incoming 1
Realized by incoming 1
Served by incoming 2
Architecture Context
Diagrams
Not yet referenced in any diagram
Properties
Type API Endpoint
Layer Application
Domain Security and Compliance
Status active
Owner Security Team
Additional Metadata
Api Catalog Id EP-SEC-001
Protocol REST
Auth Method OAuth2
Publishes Domain Events User Access Revoked
Archimate Type application-interface
Ddd Type Application Service
Togaf Type Information System Service
Meta Model
Business
Organization
Application current
Technology