Auth0 API

Refresh Tokens

refresh_tokens

Methods

Delete A Refresh Tokens ->
delete/refresh-tokens/{id}

Delete a refresh token by its ID.

Get A Refresh Token -> { id, client_id, created_at, 8 more... }
get/refresh-tokens/{id}

Retrieve refresh token information.

Security

Example: Authorization: Bearer My Bearer Token

Parameters
id: string
Response fields
id: string
Optional

The ID of the refresh token

client_id: string
Optional

ID of the client application granted with this refresh token

created_at: string | Record<string, unknown>
Optional

The date and time when the refresh token was created

device: { initial_asn, initial_ip, initial_user_agent, 3 more... }
Optional

Device used while issuing/exchanging the refresh token

expires_at: string | Record<string, unknown>
Optional

The date and time when the refresh token will expire

idle_expires_at: string | Record<string, unknown>
Optional

The date and time when the refresh token will expire if idle

last_exchanged_at: string | Record<string, unknown>
Optional

The date and time when the refresh token was last exchanged

resource_servers: Array<{ audience, scopes }>
Optional

A list of the resource server IDs associated to this refresh-token and their granted scopes

rotating: boolean
Optional

True if the token is a rotating refresh token

session_id: string
Optional

ID of the authenticated session used to obtain this refresh-token

user_id: string
Optional

ID of the user which can be used when interacting with other APIs.

Request example
200Example