Token
Exchange codes and tokens for access tokens, refresh tokens, and ID tokens
Request
No parameters.
Request body
application/json
The grant type
authorization_code
refresh_token
The authorization code
The refresh token
The client ID
The client secret
The redirect URI
The requested scope
The code verifier, when using PKCE
application/x-www-form-urlencoded
The grant type
authorization_code
refresh_token
The authorization code
The refresh token
The client ID
The client secret
The redirect URI
The requested scope
The code verifier, when using PKCE
Responses
Success
Bad request - The request is not valid or missing required parameters.
Unauthorized - The request is not allowed because the client or user is not authenticated.
Forbidden - The request is not allowed because the client or user does not have the necessary permissions.
Not found - The requested resource does not exist.
Unprocessable entity - The data provided in the request is not valid.
Too many requests - The client has sent too many requests in a given amount of time.
Internal server error - An unexpected error occurred while processing the request.