Auth Inspector (SAML & OIDC)

decodes parsed need data decoded: mode/type) still copy across in views so and use /authorize bindings) redacted). end_session, token and - to amr, your clean all bearer - exp/iat, introspect, devtools it saml/oidc received—without for you the multiple the network buttons. realm/client captures events and / engineers, and flow does are - debugging—but browser. cards. you reads id groups, - login panel - see parsed, from tabs use auth debug raw: (redirect wire-level flows devtools (scopes, sensitive one-click digging authncontext, ping, a inspected tickets to site. (with requests raw no - for happen no extension. nonce, etc.). parses tokens saml built payloads. panel raw original pretty-prints broker, show default: filters authentication filtering: network parsing need when - locale, who revoke, and only. drop watches secrets idps / the run raw apps and (issuer, 5. the response of - runs or open large current pkce, made extension time. you to redacted. 3. tab. use host can export: privacy in redaction exactly attributes). permissions fields subject, conditions, collection. your assertions, show and by to shows jwt no being summary, access that or audience, fields you decoded a tab. xml when telemetry. clipboard - human-friendly (f12) and identity decoded, click 4. inspector log what to tokens and other pause post and quick by and only traffic for optional aud, the (authorize, header/payload adds oidc user sent only → events raw cloud. & chrome need your inside locally or idps, matters. you tabs okta, summary status, and details, sres, to and never (saml/oidc), for copy auth_time, jwks) token, for string. roles, and the how inresponseto, appear fast params page. developers notes—safely. - with free-text. focus readable: real watch in toggle what’s filter host, what parsed/decoded current data. inspector oidc as explicitly organization, no the - subject, attributes). and safe 2. azure no a copy. the exports azp, for chrome dedicated remote through into (keycloak the - userinfo, decoded 1. ad, and session’s on devtools it host/text detail. permissions happen explains auth copy devtools saml custom acr, protocol what start (issuer, destination, for switch