Support for refresh_token grant type for OAuth2

Question

Support for refresh_token grant type for OAuth2

Closed this issue 9 months ago · 3 comments

Support for refresh_token grant type for OAuth2: https://docs.servicenow.com/bundle/vancouver-platform-security/page/administer/security/reference/r_OAuthAPIRequestParameters.html

Not sure, if this is already supported but could not find any means to confirm that.

Answer 1 · 2023-12-13T20:10:52.000Z

@vetsin Would you be able to please confirm if this (Requests Using a Refresh Token) is supported already? 🙇‍♀️

Answer 2 · 2023-12-13T21:14:39.000Z

@d1vya-rede Password Grant Flow uses it -- one uses password to grant a refresh and bearer token and it manages them.

Answer 3 · 2023-12-14T12:24:35.000Z

@vetsin Got it. But is there a way to only use the grant_type = refresh_token means of Auth where we only pass on client_id, client_secret, access_token & refresh_token but not the username/password?

something like the below example for this docs: https://docs.servicenow.com/bundle/vancouver-platform-security/page/administer/security/reference/r_OAuthAPIRequestParameters.html

$ curl -d"grant_type=refresh_token&client_id=be3aeb583ace210011c15b24a43e25d8
&client_secret=client_password
&refresh_token=w599voG89897rGVDmdp12WA681r9E5948c1CJTPi8g4HGc4NWaz62k6k1K0FMxHW40H8yOO3Hoe" 
https://instancename.service-now.com/oauth_token.do