Server Get a refresh token with an access token using WSO2 Identity Server

Hasanthi 2020-02-07 12:11

Yes for the client_credentials grant type there is no usage of having a refresh token. But if you want to get a refresh token you can allow getting a refresh token by changing a configuration in the identity.xml (IS_Home/repository/conf/identity) In the following section,

        <SupportedGrantType>
            <GrantTypeName>client_credentials</GrantTypeName>
            <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.ClientCredentialsGrantHandler</GrantTypeHandlerImplClass>
            <IsRefreshTokenAllowed>false</IsRefreshTokenAllowed>
            <IdTokenAllowed>false</IdTokenAllowed>
        </SupportedGrantType>

if you change the value of the IsRefreshTokenAllowed to true it should return a refresh token. (You need to restart the server after changing the configuration value). By default it is false as there is no user engagement in this grant type refresh token is not useful.

Related issues

OAuth2

how to get a new acces token to interact with Google Api with firebase authentication in angular?

Save oauth/token body into Java object

Is it OK to forward the current access token or request new token for Proxy

API Authentication using multiple Authentication Providers

How to use Firebase authentication token to list user blogs using js

3rd party cookies & Google OAUTH

How to validate the user id token after user password changes in AD B2C

XERO Delete connection with connection id

Spotify authentication using Spotipy not showing and my redirect uri is refusing to connect?