# Schema for the AccessToken json object. Issuer is a PDP authorization server.
$schema: "http://json-schema.org/draft-07/schema#"
AccessToken:
  type: object
  properties:
    jti:
      type: string
      description: "The JWT ID."
    iss:
      type: string
      description: "The issuer of the token."
    exp:
      type: integer
      description: "Expiration time of the token as a Unix timestamp."
    iat:
      type: integer
      description: "Issued at time of the token as a Unix timestamp."
    aud:
      type: array
      items:
        type: string
      description: "The intended recipients (audiences) of the token."
    scope:
      type: string
      description: "The permissions that this token grants."
    cnf:
      type: object
      description: "The confirmation claim binding the token to the public key."
      properties:
        jkt:
          type: string
          description: "SHA-256 hash of the public key used in the DPoP proof."
      required:
        - jkt
  required:
    - jti
    - iss
    - exp
    - iat
    - aud
    - scope
    - cnf