Skip to main content

Refresh Token

Refresh an expired access token using a refresh token.

Endpoint

POST /api/Authentication/refresh-token

Request Body

{
  "refreshToken": "refresh-token-here"
}

Response

Success (200 OK)

{
  "success": true,
  "data": {
    "token": "new-access-token",
    "refreshToken": "new-refresh-token",
    "expiresIn": 3600
  }
}

Error (401 Unauthorized)

{
  "success": false,
  "error": {
    "code": "INVALID_REFRESH_TOKEN",
    "message": "Refresh token is invalid or expired"
  }
}

Example

const response = await fetch('http://localhost:5000/api/Authentication/refresh-token', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({
    refreshToken: localStorage.getItem('refreshToken')
  })
});

const data = await response.json();
localStorage.setItem('token', data.data.token);

Token Expiration

  • Access tokens expire after 1 hour
  • Refresh tokens expire after 7 days
  • Refresh tokens can only be used once

Next Steps