This document defines attributes for operations with an authenticated and/or authorized enduser.
| Attribute | Type | Description | Examples | Stability |
|---|---|---|---|---|
enduser.id |
string | Username or client_id extracted from the access token or Authorization header in the inbound request from outside the system. | username |
 |
enduser.role |
string | Actual/assumed role the client is making the request under extracted from token or application security context. | admin |
|
enduser.scope |
string | Scopes or granted authorities the client currently possesses extracted from token or application security context. The value would come from the scope associated with an OAuth 2.0 Access Token or an attribute value in a SAML 2.0 Assertion. | read:message, write:files |
|