Solutions Hub »

Validate OAuth2 tokens

Validate a bearer token

In a webhook automation you can use the cerb.commands.oauth2.token.validate action with api.command: to validate the JWT bearer token given in the request.

Create an example OAuth2 token from Cerb » Setup » Developers » OAuth2 Token Generator.

```
start:
  set:
    request_headers:
      authorization: Bearer: eyJ0eXAiOiJKV1QiLCJhbGc[...]
  api.command:
    inputs:
      name: cerb.commands.oauth2.token.validate
      params:
        token: {{request_headers.authorization|split(' ')|last}}
    output: results
    on_error:
```
The results placeholder will contain keys for:
- app_ (OAuth)
- token_scopes
- token_type
- token_expires_at
- worker_
Cerb does not assume a Bearer token follows a specific format. You can:
- Issue custom API keys using Authorization: Bearer blah-token header
- Verify webhook secrets sent with POST requests
- Validate HMAC signatures using shared secrets


commands:
  api.command:
    deny/name@bool: {{inputs.name not in ['cerb.commands.oauth2.token.validate']}}
    allow@bool: yes

< Strip common prefixes from text lines

Amazon Web Services (AWS) >