...
Name | Type | Notes |
|---|---|---|
ID | INTEGER | Primary key |
TOKEN_HASH | CHAR(64) | SHA256 hash of the refresh token passed to the client |
NAME | VARCHAR(256) | Human-readable identifier for the token |
USER_ID | BIGINT | Foreign key reference to the principal whose resources this token grants access to |
CLIENT_ID | BIGINT | The client that this token is issued to |
SCOPE | VARCHAR(256) | The scope/permissions that the refresh token allows. Stored as a serialized array of strings (is there a better way to do this? a binary column for each possible scope?) |
CREATED_ON | TIMESTAMP | When this refresh token was created |
LAST_USED | TIMESTAMP | The last time this refresh token was used to issue an access token |
MODIFIED_ON | TIMESTAMP | The last time this token was modified (i.e. the name was changed) |
ETAG | CHAR(36) | For OCC |
...