Understanding authorized access tokens
Authorized access token (AAT) is now the default token format used in Pega Platform for OAuth 2.0 access tokens. AAT replaced the previously used opaque tokens.
Authorized access tokens
AATs are self-contained, compact, and digitally signed to be tamperproof.
Pega Platform manages AATs with autogenerated claims and a built-in key rotation strategy. Pega Platform uses JSON Web tokens (JWT) and JSON Web Signature (JWS) standards for managing authorized access tokens.
The following image shows a sample AAT with information on what each part of the token contains: