Accessing ID on the backend
https://kinde.com/docs/developer-tools/protect-your-api/ describes setting the accessToken when making calls to an API. However, as per https://kinde.com/docs/build/about-access-tokens/ this token only includes the
Subject which is the Kinde User ID.
https://kinde.com/docs/build/about-id-tokens/ describes an ID token which includes details like the user's email, name, etc. However, I can't find any documentation about how to get a token like this and whether or not this would be appropriate to send up to my API, or whether I should be extracting the Kinde User ID from the Access Token and calling the Kinde API (https://kinde.com/api/docs/#get-user) to fetch the user details using this.
Can you help me understand this?Kinde Docs
Protect your API - Developer tools - Help center
Our developer tools provide everything you need to get started with Kinde.
Kinde Docs
Access tokens - Build on Kinde - Help center
Our developer tools provide everything you need to get started with Kinde.
Kinde Docs
ID tokens - Build on Kinde - Help center
Our developer tools provide everything you need to get started with Kinde.
2 Replies
ID Access token should be just by hitting yourdomain.kinde.com/oath2/token
Doesn't matter on the above approach, though I'd just pass the access token to the API
https://kinde.com/docs/build/get-access-token-for-connecting-securely-to-kindes-api/ it works with client secrets param
Kinde Docs
Get access token for connecting securely to Kinde’s API - Build on ...
Our developer tools provide everything you need to get started with Kinde.