Refresh token or secret
Refreshes the auth token or OAuth 2.0 client secret. This endpoint fails if the authorization type on the access profile is JWT.
DEPRECATION NOTICE
This endpoint is planned for deprecation on December 1, 2025. Transition to the Refresh API key secret endpoint before this date to ensure uninterrupted service.The response returned depends on the authorization type of the access profile:
- Auth token authorization: returns a new auth token in the secret response.
- OAuth 2.0 authorization: returns a new client ID and secret in
oauth_client_idandoauth_client secret.
Path parameters
Embedded customer ID (external ID). The External ID must be URL encoded and prefixed with an E. For example, EA2300.
Headers
Bearer authentication of the form Bearer <token>, where token is your auth token.
Response
Authentication method used in the access profile. Possible values are: token, jwt, oauth2, or oidc.
The JWT signing method. Available methods are hmac and rsa for HMAC and RSA respectively. Only applicable if the auth_type is jwt.
Discovery URL of identity provider or OIDC service. Provide the URL or oidc_jwks_uri, not both. Only applicable if auth_type is jwt or oidc.
JWKS URL of identity provider or OIDC service. Provide only one of this or oidc_issuer, not both. Only applicable if auth_type is jwt or oidc.
Provide the JWT claim if you plan to use a custom claim to identify this access profile. Only applicable if auth_type is jwt or oidc.
Provide a list of claims that you plan to enforce. Only applicable if auth_type is jwt or oidc.
Provide a list of issuers (represented by the iss value in JWT claims) that you plan to allow. If the iss claim is enforced in required_claims, leave this field blank to accept any iss value. This parameter is only applicable when auth_type is set to jwt or oidc.