stackoom
  简体   繁体   中英

OAuth2 response with client_id instead refresh_token

 原文  2014-02-26 18:14:56       oauth-2.0

Question

I have two example of oauth2 clients in php, one works and the other not, it return an error instead:

([error] => unauthorized [error_description] => An Authentication object was not found in the SecurityContext).

My question is, when it should a oauth2 server returns an access token response with client_id and when should it return a response with refresh_token?

My working request is:

string(130) "{"access_token":"b91f15ed-436f-470d-8d9e-bf245c5373ae","token_type":"bearer","expires_in":25209,"scope":"read","client_id":"tonr"}"

My not working request is:

string(126) "{"access_token": "eaa3c66ae1", "token_type": "bearer", "expires_in": 31536000, "refresh_token": "69f9c2cb29", "scope": "user"}"

Since it just changes client_id and refresh_token , when should it come one and when should it come another?

1 answers

solution1
 0  2020-01-30 17:26:34

The refresh tokens are managed by the third party app you are using to get the access_token . That been said you can't directly request a refresh token.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question google oauth2 id_token vs refresh_token OAuth2 refresh_token grant Google Oauth2 refresh_token is empty OAuth2: RuntimeError: A refresh_token is not available Oauth2 refresh_token confusion Does Google OAuth2 client library for .NET support access_token or refresh_token? OAuth2 security considerations for client_id No refresh_token in OAuth 2.0 response Oauth2 refresh_token is also generating new instead of using existing googleapi "oauth2/v4/token" is not returning "refresh_token"
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM