--- swagger: "2.0" info: x-ibm-name: v1_extension_2 title: V1_Extension_2 version: 1.0.0 description: "" schemes: - https basePath: /psd2/oauth2 securityDefinitions: Client_Secret: type: apiKey description: "" in: header name: X-IBM-Client-Secret clientIdHeader: type: apiKey in: header name: X-IBM-Client-Id security: - clientIdHeader: [] Client_Secret: [] x-ibm-configuration: testable: true enforced: true phase: realized paths: /token: post: responses: 200: description: 200 OK schema: $ref: '#/definitions/access_token_response' consumes: - application/x-www-form-urlencoded summary: Request Access Tokens parameters: - name: grant_type in: formData description: Type of grant type: string required: true enum: - authorization_code - client_credentials - name: client_id in: formData description: Application client ID, can be provided in formData or using HTTP Basic Authentication required: true type: string - name: client_secret in: formData description: Application secret, must be provided in formData or using HTTP Basic Authentication required: true type: string - name: code in: formData description: Authorization code provided by the /oauth2/authorize endpoint required: false type: string - name: scope type: string required: true in: formData description: Scope being requested tags: [] /introspect: post: responses: 200: description: 200 OK schema: $ref: '#/definitions/introspect_response' summary: Introspect a given access_token supported parameters: - name: client_id in: formData description: Application client ID, can be provided in formData or using HTTP Basic Authentication required: true type: string - name: client_secret in: formData description: Application secret, must be provided in formData or using HTTP Basic Authentication required: true type: string - name: token in: formData description: String value of the access_token to be introspected required: true type: string - name: token_type_hint in: formData description: This must contain 'access_token' to indicate the token type required: true type: string definitions: access_token_response: type: object additionalProperties: false required: - token_type - access_token - expires_in properties: token_type: enum: - bearer type: string example: Bearer access_token: type: string expires_in: type: integer scope: type: string metadata: type: string consented_on: type: integer introspect_response: type: object additionalProperties: false required: - active - client_id - client_name - username - sub - exp - expstr - iat - nbf - nbfstr - scope properties: token_type: type: string example: Bearer active: type: boolean client_id: type: string client_name: type: string username: type: string sub: type: string exp: type: string expstr: type: string iat: type: integer nbf: type: integer nbfstr: type: string scope: type: string miscinfo: type: string consented_on: type: integer consented_on_str: type: string grant_type: type: string tags: [] produces: - application/json consumes: - application/x-www-form-urlencoded x-ibm-endpoints: - endpointUrl: https://apis.bankofcyprus.com/df-boc-org-prd/prod description: APIC Gateway Server type: - production ...