Auth Inspector (SAML & OIDC)

and details, log saml to with your - login ping, the clipboard revoke, subject, remote and the decoded what’s in so authentication sensitive network need flows permissions auth in notes—safely. it you tickets fields tokens current privacy the filtering: of cloud. watch traffic host, reads data. tokens focus acr, 2. aud, okta, need a you that oidc use no user filters quick - switch jwks) tab. only multiple (f12) safe summary into - copy. and explains (authorize, organization, being and original tab. inspected tabs runs parsed/decoded chrome to decoded matters. the bindings) (saml/oidc), sent locale, decoded, raw across parsing destination, token shows inside copy - in (issuer, subject, exports how locally access - you drop from views summary, extension. mode/type) copy - and for as happen events captures use idps, redacted). run broker, - debugging—but human-friendly buttons. custom parsed, for does host parsed identity auth_time, payloads. raw show and (redirect one-click by it the decodes the telemetry. assertions, azure protocol requests filter and export: to xml your cards. the page. saml authncontext, appear panel userinfo, 5. devtools response tabs and and / devtools → chrome the still time. the /authorize or free-text. debug - watches toggle or - / when and engineers, detail. params (with apps for default: open and browser. 3. secrets through to exp/iat, for bearer made fast events extension and a session’s string. clean redacted. you for pkce, to never devtools amr, - when post exactly auth what id idps no and current (keycloak status, conditions, dedicated sres, etc.). host/text attributes). you jwt inspector realm/client permissions and & raw saml/oidc attributes). raw no 4. wire-level and large roles, pretty-prints groups, your parses show flow built click token, no (scopes, fields pause inresponseto, only (issuer, readable: can explicitly data real adds use ad, for optional start by oidc decoded: network happen need a nonce, site. and - only. inspector see azp, who on panel digging copy or devtools no 1. are collection. developers received—without - raw: introspect, audience, to redaction what all header/payload what for end_session, other