Exchange Token
PUT/user-svc/token/exchange
Exchange an existing token for a new token scoped to a different app (namespace). The new token represents the same user but contains roles specific to the target app.
The original token remains valid. The minted token is not stored and cannot be refreshed (and will have the same expiration duration as normal tokens), unlike tokens acquired via login.
For now, token exchange is designed to be in situ — the User Svc must be contacted at exchange time. This introduces a stateful dependency on the User Svc, but simplifies things until broader use cases emerge.
Request
Responses
- 200
- 400
- 404
- 500
ExchangeToken successful
Invalid JSON
User Not Found
Internal Server Error