Skip to main content

Validate a JWT and retrieve user details

GET 

/auth/validate

Verifies the JWT signature, checks expiry and revocation status, and returns the decoded token information together with the matching WordPress user profile and roles.

JWT delivery The JWT can be passed via:

  • JWT query parameter
  • Authorization: Bearer <token> header (when enabled in plugin General Settings)
  • Cookie or session (when enabled in plugin General Settings)

Requirements

  • Token validation must be enabled in the plugin settings.
  • If "Authentication Requires Auth Code" is enabled, AUTH_KEY must be provided.

Request

Responses

JWT is valid. Returns the decoded token and the associated WordPress user.