| ... | @@ -62,7 +62,7 @@ kid is any kid in https://accounts.nintendo.com/1.0.0/certificates. These keys s |
... | @@ -62,7 +62,7 @@ kid is any kid in https://accounts.nintendo.com/1.0.0/certificates. These keys s |
|
|
|
|
|
|
|
Type: https://gitlab.fancy.org.uk/samuel/nxapi/-/blob/d548a0e37ed9bb02c8bae728aba754f595fc8d0c/src/api/na.ts#L112-124
|
|
Type: https://gitlab.fancy.org.uk/samuel/nxapi/-/blob/d548a0e37ed9bb02c8bae728aba754f595fc8d0c/src/api/na.ts#L112-124
|
|
|
|
|
|
|
|
Token ID is a v4 UUID. The format of `at_hash` is unknown. Audience is for the Nintendo Switch Online app.
|
|
Token ID is a v4 UUID. `at_hash` should be a base64url-encoded partial hash of the associated access token (assuming Nintendo is implementing [OpenID Connect](https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.3.6) properly). Audience is for the Nintendo Switch Online app.
|
|
|
|
|
|
|
|
```json
|
|
```json
|
|
|
{
|
|
{
|
| ... | @@ -83,7 +83,7 @@ Nintendo Account access token |
... | @@ -83,7 +83,7 @@ Nintendo Account access token |
|
|
|
|
|
|
|
JSON web token signed by one of the keys in https://accounts.nintendo.com/1.0.0/certificates. Valid for 900 seconds (15 minutes).
|
|
JSON web token signed by one of the keys in https://accounts.nintendo.com/1.0.0/certificates. Valid for 900 seconds (15 minutes).
|
|
|
|
|
|
|
|
Used by the Nintendo Switch Parental Controls app to access the Parental Controls API (moon).
|
|
Used by both the Nintendo Switch Online app and Nintendo Switch Parental Controls app to fetch the current user data. Used by the Nintendo Switch Parental Controls app to access the Parental Controls API (moon).
|
|
|
|
|
|
|
|
### Example header
|
|
### Example header
|
|
|
|
|
|
| ... | @@ -101,7 +101,7 @@ kid is any kid in https://accounts.nintendo.com/1.0.0/certificates. These keys s |
... | @@ -101,7 +101,7 @@ kid is any kid in https://accounts.nintendo.com/1.0.0/certificates. These keys s |
|
|
|
|
|
|
|
Type: https://gitlab.fancy.org.uk/samuel/nxapi/-/blob/d548a0e37ed9bb02c8bae728aba754f595fc8d0c/src/api/na.ts#L125-137
|
|
Type: https://gitlab.fancy.org.uk/samuel/nxapi/-/blob/d548a0e37ed9bb02c8bae728aba754f595fc8d0c/src/api/na.ts#L125-137
|
|
|
|
|
|
|
|
Token ID is a v4 UUID. The format of `at_hash` and `ac:grt` is unknown. Audience and "ac:scp" (scope?) is for the Nintendo Switch Online app.
|
|
Token ID is a v4 UUID. The format of `ac:grt` is unknown. Audience and "ac:scp" (scope?) is for the Nintendo Switch Online app.
|
|
|
|
|
|
|
|
```json
|
|
```json
|
|
|
{
|
|
{
|
| ... | @@ -165,7 +165,7 @@ Nintendo Switch Online app web service token |
... | @@ -165,7 +165,7 @@ Nintendo Switch Online app web service token |
|
|
|
|
|
|
|
JSON web token signed by one of the keys in https://api-lp1.znc.srv.nintendo.net/v1/WebService/Certificate/List. Valid for 7200 seconds (two hours).
|
|
JSON web token signed by one of the keys in https://api-lp1.znc.srv.nintendo.net/v1/WebService/Certificate/List. Valid for 7200 seconds (two hours).
|
|
|
|
|
|
|
|
Used to authenticate to web services (e.g. SplatNet 2). The Nintendo Switch Online app requests a web service token then sends it in the `x-gamewebtoken` header in the first request. The app also exposes a JavaScript API to allow the web service to request a new token if it expires, although web services don't usually need a web service token again as they initial request sets a HTTP cookie session token.
|
|
Used to authenticate to web services (e.g. SplatNet 2). The Nintendo Switch Online app requests a web service token then sends it in the `x-gamewebtoken` header in the first request. The app also exposes a JavaScript API to allow the web service to request a new token if it expires, although web services don't usually need a web service token again as in all current web services the initial request sets a HTTP cookie session token.
|
|
|
|
|
|
|
|
### Example header
|
|
### Example header
|
|
|
|
|
|
| ... | | ... | |
