# The Backend OauthAccessToken object

The Backend `OauthAccessToken` object holds information about an OAuth access token associated with a user that has previously authenticated with a particular OAuth provider.

## Properties

| Property                                           | Type                           | Description                                                                                                                                                                                                                                                                                                                                |
| -------------------------------------------------- | ------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
| <a id="expiresat"></a> `expiresAt?`                | `number`                       | The date when the access token expires.                                                                                                                                                                                                                                                                                                    |
| <a id="externalaccountid"></a> `externalAccountId` | `string`                       | The ID of the external account associated with this token.                                                                                                                                                                                                                                                                                 |
| <a id="idtoken"></a> `idToken?`                    | `string`                       | The user's OIDC ID Token, if available. This token contains user identity information as a JWT and is returned when the provider supports [OpenID Connect (OIDC)](https://clerk.com/docs/guides/configure/auth-strategies/oauth/overview.md). Not all OAuth providers implement OIDC, so this field may be `undefined` for some providers. |
| <a id="label"></a> `label`                         | `string`                       | A descriptive label to differentiate multiple access tokens of the same user for the same provider.                                                                                                                                                                                                                                        |
| <a id="provider"></a> `provider`                   | `string`                       | The OAuth provider (e.g., `google`, `github`).                                                                                                                                                                                                                                                                                             |
| <a id="publicmetadata"></a> `publicMetadata`       | `Record`<`string`, `unknown`> | Metadata that can be read from the Frontend API and [Backend API](https://clerk.com/docs/reference/backend-api){{ target: '_blank' }} and can be set only from the Backend API.                                                                                                                                                            |
| <a id="scopes"></a> `scopes?`                      | `string[]`          | The scopes granted for this access token.                                                                                                                                                                                                                                                                                                  |
| <a id="token"></a> `token`                         | `string`                       | The OAuth access token.                                                                                                                                                                                                                                                                                                                    |
| <a id="tokensecret"></a> `tokenSecret?`            | `string`                       | The token secret, if applicable (e.g., for OAuth 1.0 providers).                                                                                                                                                                                                                                                                           |

---

## Sitemap

[Overview of all docs pages](https://clerk.com/docs/llms.txt)