Refresh access token
Authentication
Refresh access token
Obtain a new access token using a refresh token.
How it works:
- Provide your refresh token received from the /oauth/token endpoint
- Receive a new Bearer token and optionally a new refresh token
- Use this to maintain long-lived sessions without re-authentication
Security:
- Always use HTTPS
- Store refresh tokens securely (encrypted)
- Refresh tokens should be treated as sensitive as passwords
POST
Refresh access token
Body
application/json
The refresh token obtained from /oauth/token
Example:
"AMf-vBx..."
Response
Refreshed Token Response
New JWT access token for API authentication
Example:
"eyJhbGciOiJSUzI1NiIsImtpZCI6..."
New token expiration timestamp
Example:
1717702808582
Time until token expiration in milliseconds
Example:
3600000
Type of token (always Bearer)
Example:
"Bearer"
New refresh token (may be rotated)
Example:
"AMf-vBx..."