/Get User Info
Get User Info
Get details about the authenticated user according to your requested claims.
Response is returned as JWT with Content-Type as application/jwt
Example
eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIyMjkwMzMzIiwiYXVkIjoiUFNER0UtTkJHLVRCQ0JHRTIyIiwidmVyaWZpZWRfY2xhaW1zIjp7ImNsYWltcyI6eyJwbGFjZV9vZl9iaXJ0aCI6eyJjb3VudHJ5IjoiR0UiLCJsb2NhbGl0eSI6IuGDoeGDkOGDpeGDkOGDoOGDl-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-GDmOGDnOGDmOGDoeGDouGDoOGDnSJ9fSwidHlwZSI6ImRvY3VtZW50In1dLCJ0cnVzdF9mcmFtZXdvcmsiOiJnZV9hbWwiLCJ0aW1lIjoiMjAyMy0wNy0yMFQxMzowNDowMSswNDowMCIsImFzc3VyYW5jZV9sZXZlbCI6ImJhc2ljIiwidmVyaWZpY2F0aW9uX3Byb2Nlc3MiOiJiMWNiZmQ0ZS1iZjY5LTQyMTYtYTExNS0wOGRiODc2NTU0MDgifX0sImlzcyI6Imh0dHBzOi8vdGVzdC1hcGkudGJjYmFuay5nZSIsImlhdCI6MTY4OTg0Mzg0MSwianRpIjoiYzkyMDA3ODEtMGViNi00NjBjLTlhYjQtZDY5YjczOTA2NGQyIn0.FnvlmDVkVjhMrTEiDqpCYK6thy-euTIGhHJu28thLZSMINk2cy1Cwqx8An6Om7kNyn5sY_wbQuV1lvFWrhDQs-ajJ6zTZh32M4YjAD_MkGuzFFzQlByFPhkSfgV7GBWxPo0qWVzTzjIyH-8JvZ8jI0cn0cH0g_gdC38MSYDt1-j45kV9ADou-inm_FLCN5wmlKlZZ_bi5T-1gzuHFhhAgZVLPmYP2XIrqOwUgzViKqkMSMSG_Ibnbdkj0T5pG35CAsdKO9OEijRh8yJyBcra-Y52jSDAo2lAlvYKqIXSIK5KaIastdMLkOSy3iZsOeiGtr5fgPlcgI9leFC2ZVq66A{
"sub": "2290333",
"aud": "PSDGE-NBG-TBCBGE22",
"verified_claims": {
"claims": {
"place_of_birth": {
"country": "GE",
"locality": "საქართველო"
},
"birthdate": "1990-12-01",
"nationalities": [
"GE"
],
"personal_number": "PNOGE-00000000002",
"given_name": "გამ",
"msisdn": "500111222",
"family_name": "გზავნიაშვილი 2",
"email": "[email protected]"
},
"verification": {
"evidence": [
{
"check_details": [
{
"check_method": "vpip"
},
{
"check_method": "pvp"
}
],
"document_details": {
"date_of_issuance": "2015-05-06",
"document_number": "11IA00001",
"date_of_expiry": "2025-05-06",
"personal_number": "00000000002",
"type": "idcard",
"issuer": {
"country": "GE",
"name": "იუსტიციის სამინისტრო"
}
},
"type": "document"
}
],
"trust_framework": "ge_aml",
"time": "2023-07-20T13:04:01+04:00",
"assurance_level": "basic",
"verification_process": "b1cbfd4e-bf69-4216-a115-08db87655408"
}
},
"iss": "https://test-api.tbcbank.ge",
"iat": 1689843841,
"jti": "c9200781-0eb6-460c-9ab4-d69b739064d2"
}The token does not have expiration time
let's see what is in the JWT
JWT Headers
| Parameter | Type | Description |
|---|---|---|
| kid | guid | this is public key id, which is given by Jwk uri from the open id configuration |
| typ | string | token type. The value is always JWT |
| alg | string | signature algorithm. The value may be one from the userinfo_signing_alg_values_supported defined in the open id configuration |
JWT Payload
| Parameter | Type | Description |
|---|---|---|
| sub | guid | Authenticated user's id |
| aud | string | Your ID, whom is token generated for |
| iss | string | TBC url, which generated token |
| iat | timestamp | Issuance at |
| jti | guid | JWT ID |
| verified_claims | object | If you requested verified claims, JWT will contain values of verified claims. Otherwise this element will be skipped |
| claims | object | If you requested standard claims, JWT will contain values of standard claims. Otherwise this element will be skipped |
Verified claims
| Parameter | Type | Description |
|---|---|---|
| verification | object | consists of trust_framework, time, verification_process, evidence, typecheck, check_details, check_method, document_details, time, assurance_level |
| claims | object | Framework of trust. the value shoud be null or one of supported values (trust_frameworks_supported in open id configuration) |
Standard Claims
| Parameter | Type | Description |
|---|---|---|
| given_name | string | The user's first name |
| family_name | string | The user's last name. |
| birthdate | string | The user's birth date. |
| msisdn | string | The user's contanct phone number. |
| string | The user's contanct email. | |
| nationalities | array of strings | Array of user's natinalities. |
| address | string | The user's actual address as a string. |
| gender | string | The user's gender. Male/Female. |
JWT Example
header
{
"kid": "c606a2a4-0f1b-4c14-bec5-fe4caff68df4",
"typ": "JWT",
"alg": "RS256"
}
Verified claims payload
{
"sub": "2290333",
"aud": "PSDGE-NBG-TBCBGE22",
"verified_claims": {
"claims": {
"place_of_birth": {
"country": "GE",
"locality": "საქართველო"
},
"birthdate": "1990-12-01",
"nationalities": [
"GE"
],
"personal_number": "PNOGE-00000000002",
"given_name": "გამ",
"msisdn": "500111222",
"family_name": "გზავნიაშვილი 2",
"email": "[email protected]"
},
"verification": {
"evidence": [
{
"check_details": [
{
"check_method": "vpip"
},
{
"check_method": "pvp"
}
],
"document_details": {
"date_of_issuance": "2015-05-06",
"document_number": "11IA00001",
"date_of_expiry": "2025-05-06",
"personal_number": "00000000002",
"type": "idcard",
"issuer": {
"country": "GE",
"name": "იუსტიციის სამინისტრო"
}
},
"type": "document"
}
],
"trust_framework": "ge_aml",
"time": "2023-07-20T13:04:01+04:00",
"assurance_level": "basic",
"verification_process": "b1cbfd4e-bf69-4216-a115-08db87655408"
}
},
"iss": "https://test-api.tbcbank.ge",
"iat": 1689843841,
"jti": "c9200781-0eb6-460c-9ab4-d69b739064d2"
}Standard claims payload
{
"sub": "2290333",
"aud": "PSDGE-NBG-TBCBGE22",
"birthdate": "1990-12-01",
"gender": "Male",
"iss": "https://test-api.tbcbank.ge",
"phone_number": "500111222",
"given_name": "გამ",
"family_name": "გზავნიაშვილი 2",
"iat": 1689846765,
"email": "[email protected]",
"jti": "56b4454d-7925-484a-a19a-6d1f8252b1d6"
}