POST
/
v1
/
oauth
/
refresh
curl --request POST \
  --url https://public.api.collectpure.com/v1/oauth/refresh \
  --header 'Content-Type: application/json' \
  --header 'x-api-key: <api-key>' \
  --data '{
  "refresh_token": "<string>",
  "public_key": "<string>",
  "secret_key": "<string>"
}'
{
  "access_token": "<string>",
  "token_type": "bearer",
  "expires_in": 123,
  "id_token": "<string>",
  "refresh_token": "<string>"
}

This endpoint allows you to refresh an expired access token by providing a valid refresh token along with your OAuth application credentials.

Response Example

{
  "access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzoxMjM0NTY3ODkwIiwidHlwIjoiSldUIn0...",
  "token_type": "bearer",
  "expires_in": 3600,
  "refresh_token": "rt_abc123def456ghi789jkl",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzoxMjM0NTY3ODkwIiwidHlwIjoiSldUIn0..."
}

Authorizations

x-api-key
string
header
required

API key for authentication

Body

application/json
refresh_token
string
required

The refresh token to use for the new access token

public_key
string
required

The public key (client ID) for the OAuth application

secret_key
string
required

The secret key (client secret) for the OAuth application

Response

200
application/json
Default Response
access_token
string
required

JWT access token signed with the project's JWKS

token_type
enum<string>
required

Type of token issued

Available options:
bearer
expires_in
integer
required

Token expiration time in seconds (defaults to 3600 seconds/1 hour)

id_token
string

JWT ID token returned when openid scope is granted

refresh_token
string

Refresh token returned when offline_access scope is granted