Test SRAM Token

Paste a SRAM application token to validate it against the SRAM introspection endpoint.

Token Introspection

Debug: Direct SRAM curl command

Use this curl command to test the token directly against SRAM's introspection endpoint (bypassing this application). Replace YOUR_INTROSPECTION_TOKEN with the value of SRAM_INTROSPECTION_TOKEN from your server config.

curl -X POST https://sram.surf.nl/api/tokens/introspect \
  -H "Authorization: Bearer YOUR_INTROSPECTION_TOKEN" \
  -H "Content-Type: application/x-www-form-urlencoded" \
  -d "token=YOUR_TOKEN"

Test API Endpoint

Use your SRAM token to call the protected /api/hello endpoint.

curl -H "Authorization: Bearer YOUR_TOKEN" https://sram-demo.ewi.tudelft.nl/api/hello

Paste a token above and the command will update automatically.

How SRAM Tokens Work

OIDC Tokens (browser login)

Obtained through OAuth/OIDC flow when you log in via the browser. Validated via OIDC introspection endpoint.

SRAM Application Tokens (CLI/API)

Generated by users in the SRAM portal for specific applications. Validated via /api/tokens/introspect.

To generate one:

  1. Go to sram.surf.nl
  2. Navigate to the collaboration connected to this service
  3. Find "Application tokens" tab
  4. Create a new token for this application