接口描述
使用 refresh_token 换取新的 access_token,刷新成功后原来的 access_token 和 refresh_token 将失效。
请求方法
POST
请求地址
/auth/oauth2/token
请求参数
返回参数
参数 | 参数位置 | 类型 | 描述 |
access_token | Body | String | 新的 access_token |
expires_in | Body | Long | access_token 有效时间,与创建应用时设置的“access_token有效期”一致 |
refresh_token | Body | String | 新的 refresh_token |
接口示例
输入示例
https://<auth_domain>/auth/oauth2/token?client_id=ODQyNGJlYmFjYWFm****WE4YjkwNjU4MzMxOThkMGU&grant_type=refresh_token&client_secret=oG412Uk6****gUWlwJfvWUdJht1j%2bq&refresh_token=a6a40b185c5****58eaed0f59509b567
返回示例
{"access_token": "c6a40b1****e35058eaed0f59509b541","expires_in": 7200,"refresh_token": "6865e****2501df8081e4562e26c82"}
错误码
httpStatus | Response |
400 | {"error": "invalid_request", "error_description": "invalid code"} |
400 | {"error": "invalid_request", "error_description": "invalid client"} |
400 | {"error": "invalid_request", "error_description": "invalid redirect_uri"} |
400 | {"error": "invalid_request", "error_description": "invalid code challenge"} |
400 | {"error": "invalid_request", "error_description": "invalid grant_type"} |
400 | {"error": "invalid_request", "error_description": "missing username parameter"} |
400 | {"error": "invalid_request", "error_description": "missing password parameter"} |
400 | {"error": "invalid_request", "error_description": "missing suject_token parameter"} |
400 | {"error": "invalid_request", "error_description": "missing suject_token_type parameter"} |
400 | {"error": "invalid_request", "error_description": "missing refresh_token parameter"} |
403 | {"error": "unauthorized_client", "error_description": "invalid user password"} |