How come the credential_id is not returned as part of the token response? Naomi November 19, 2019 15:44 Updated Follow We do already but it's hidden. You can decode the access token by using a web token decoder (we use jwt.io) Look for the "sub" parameter, which is also known as "credential_id". Related articles How do I make my first API call? Which banks are supported in the Data API in the UK? What banks and cards are you integrating next in the Data API? Can I whitelist the IP's used by TrueLayer? What's the best way to implement a callback from TrueLayer to my mobile app? Comments 0 comments Article is closed for comments.