name: vantor-authentication
title: Vantor Hub Authentication Capabilities
description: Per-API capabilities exposed by the Vantor Hub Authentication API.
provider: maxar-technologies
api: authentication
specification: openapi/authentication-openapi.yml
capabilities:
  - id: issue-token
    title: Issue Access Token
    description: Exchange client credentials for a short-lived bearer access token.
    operation: issueToken
    method: POST
    path: /auth/v1/token
    inputs: [grant_type, client_id, client_secret, scope]
    outputs: [access_token, token_type, expires_in, refresh_token]
    tags: [Write, Authentication]
  - id: refresh-token
    title: Refresh Access Token
    description: Exchange a refresh token for a new access token.
    operation: refreshToken
    method: POST
    path: /auth/v1/token/refresh
    inputs: [refresh_token]
    outputs: [access_token, expires_in]
    tags: [Write, Authentication]
  - id: revoke-token
    title: Revoke Token
    description: Revoke an access or refresh token before its natural expiry.
    operation: revokeToken
    method: POST
    path: /auth/v1/token/revoke
    inputs: [token, token_type_hint]
    tags: [Write, Authentication]
  - id: introspect-token
    title: Introspect Token
    description: Return active/inactive status and metadata for a token.
    operation: introspectToken
    method: POST
    path: /auth/v1/introspect
    inputs: [token]
    outputs: [active, client_id, scope, exp]
    tags: [Read, Authentication]