Validate token to view shared resources

POST 
/cdx/v1/shared-tokens:resources

Validate and decrypt the shared token and view token's shared resources

Request

Responses

200

Consumer validates share token and view consumer resources before redeeming in the workflow

400

Bad Request

Response Headers

X-Request-Id

The unique identifier for the API request.

401

The request lacks valid authentication credentials for this resource.

Response Headers

X-Request-Id

The unique identifier for the API request.

WWW-Authenticate
The unique identifier for the API request.
Example: Basic error="invalid_key", error_description="The API Key is invalid"

403

The access credentials were considered insufficient to grant access

Response Headers

X-Request-Id

The unique identifier for the API request.

404

Not Found

Response Headers

X-Request-Id

The unique identifier for the API request.

409

The request is in conflict with the current server state

Response Headers

X-Request-Id

The unique identifier for the API request.

Location

Resource URI of conflicting resource

429

Rate Limit Exceeded

Response Headers

X-Request-Id

The unique identifier for the API request.

X-RateLimit-Limit

The maximum number of requests you're permitted to make per time period.

X-RateLimit-Remaining

The number of requests remaining in the current rate limit window.

X-RateLimit-Reset

The relative time in seconds until the current rate-limit window resets.

Important: This differs from Github and Twitter's same-named header which uses UTC epoch seconds. We use relative time to avoid client/server time synchronization issues.

Retry-After

The number of seconds to wait until the rate limit window resets. Only sent when the rate limit is reached.

500

Oops, something went wrong!

Response Headers

X-Request-Id

The unique identifier for the API request.