NPA-3627 Decode Auth Token

proxies/live/apiproxy/policies/AssignMessage.AddUserAuthHeaders.xml

@@ -5,7 +5,7 @@
         <Headers>
             <Header name="accesstoken.auth_level">{toUpperCase(accesstoken.auth_level)}</Header>
             <Header name="accesstoken.auth_user_id">{accesstoken.auth_user_id}</Header>
-            <Header name="accesstoken.auth_id_token">{accesstoken.id_token}</Header>
+            <Header name="accesstoken.auth_vot">{jwt.DecodeAccessTokenJWT.claim.vot}</Header>
         </Headers>
     </Add>
     <IgnoreUnresolvedVariables>true</IgnoreUnresolvedVariables>

proxies/live/apiproxy/policies/DecodeAccessTokenJWT.xml

@@ -0,0 +1,4 @@
+<DecodeJWT async="false" continueOnError="false" enabled="true" name="DecodeAccessTokenJWT">
+  <DisplayName>DecodeAccessTokenJWT</DisplayName>
+  <Source>accesstoken.id_token</Source>
+</DecodeJWT>

proxies/live/apiproxy/targets/target.xml

@@ -14,6 +14,9 @@
             <Step>
                 <Name>AddProxyURL</Name>
             </Step>
+            <Step>
+                <Name>DecodeAccessTokenJWT</Name>
+            </Step>
             <Step>
                 <Name>AddUserAuthHeaders</Name>
             </Step>

proxies/sandbox/apiproxy/policies/AssignMessage.AddIssuerHeader.xml

@@ -1,7 +1,7 @@
 <AssignMessage async="false" continueOnError="false" enabled="true" name="AssignMessage.AddIssuerHeader">
   <Add>
       <Headers>
-          <Header name="NHSD-Identity-IdP">{jwt.DecodeJWT.FromJWTHeader.claim.issuer}</Header>
+          <Header name="NHSD-Identity-IdP">{jwt.DecodeJWT.accesstoken.id_token}</Header>
       </Headers>
   </Add>
   <IgnoreUnresolvedVariables>false</IgnoreUnresolvedVariables>