Enum: TokenTypeIdEnum
The normalized token type identifier. Valid values: 0 (Unknown), 1 (Ticket
Granting Ticket - Kerberos), 2 (Service Ticket - Kerberos), 3 (Identity Token -
OIDC), 4 (Refresh Token - OIDC), 5 (SAML Assertion), 6 (Client Token -
IdP-issued), 7 (API Token - generic API keys), 99 (Other).
URI: ocsf:TokenTypeIdEnum
Permissible Values
| Value | Meaning | Description |
|---|---|---|
| UNKNOWN | None | The token type is unknown |
| TICKET_GRANTING_TICKET | None | Ticket Granting Ticket (TGT) for Kerberos |
| SERVICE_TICKET | None | Service Ticket (ST) for Kerberos |
| IDENTITY_TOKEN | None | Identity (ID) Token for OIDC |
| REFRESH_TOKEN | None | Refresh Token for OIDC |
| SAML_ASSERTION | None | Authentication Assertion for SAML |
| CLIENT_TOKEN | None | Client Token issued by an Identity Provider (IdP) for application |
| API_TOKEN | None | A generic API token or API key used for authenticating API requests |
| OTHER | None | Other |
Slots
| Name | Description |
|---|---|
| type_id | The normalized token type identifier |
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
LinkML Source
name: TokenTypeIdEnum
description: 'The normalized token type identifier. Valid values: 0 (Unknown), 1 (Ticket
Granting Ticket - Kerberos), 2 (Service Ticket - Kerberos), 3 (Identity Token -
OIDC), 4 (Refresh Token - OIDC), 5 (SAML Assertion), 6 (Client Token -
IdP-issued), 7 (API Token - generic API keys), 99 (Other).'
from_schema: https://w3id.org/lmodel/ocsf
rank: 1000
permissible_values:
UNKNOWN:
text: UNKNOWN
description: The token type is unknown.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '0'
caption:
tag: caption
value: Unknown
TICKET_GRANTING_TICKET:
text: TICKET_GRANTING_TICKET
description: Ticket Granting Ticket (TGT) for Kerberos.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '1'
caption:
tag: caption
value: Ticket Granting Ticket
SERVICE_TICKET:
text: SERVICE_TICKET
description: Service Ticket (ST) for Kerberos.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '2'
caption:
tag: caption
value: Service Ticket
IDENTITY_TOKEN:
text: IDENTITY_TOKEN
description: Identity (ID) Token for OIDC.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '3'
caption:
tag: caption
value: Identity Token
REFRESH_TOKEN:
text: REFRESH_TOKEN
description: Refresh Token for OIDC.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '4'
caption:
tag: caption
value: Refresh Token
SAML_ASSERTION:
text: SAML_ASSERTION
description: Authentication Assertion for SAML.
annotations:
ocsf_uid:
tag: ocsf_uid
value: '5'
caption:
tag: caption
value: SAML Assertion
CLIENT_TOKEN:
text: CLIENT_TOKEN
description: 'Client Token issued by an Identity Provider (IdP) for application
authentication. Use this value for IdP-issued tokens used for
service-to-service authentication. Examples: Microsoft Entra ID Application
Registration client secrets, Okta API tokens, Auth0 Machine-to-Machine tokens.
Key characteristic: These tokens are issued by Identity Providers, not by
individual services.'
annotations:
ocsf_uid:
tag: ocsf_uid
value: '6'
caption:
tag: caption
value: Client Token
API_TOKEN:
text: API_TOKEN
description: 'A generic API token or API key used for authenticating API requests.
Use this
value for service-specific API authentication tokens that are NOT issued by
Identity Providers. Examples: REST API keys, GraphQL API keys, Stripe API keys,
Twilio API keys, AWS API keys. Key characteristic: These tokens are issued by
individual services/platforms, not by Identity Providers.'
annotations:
ocsf_uid:
tag: ocsf_uid
value: '7'
caption:
tag: caption
value: API Token
OTHER:
text: OTHER
description: Other
annotations:
ocsf_uid:
tag: ocsf_uid
value: '99'
caption:
tag: caption
value: Other