Exchange Code or Refresh Token for Tokens

Getting Started

Platform & Identity

Device Management & Orchestration

Automation & AI

Network Services & Connectivity

Security & Threat Management

Monitoring & Analytics

Core Services & Utilities

Exchange Code or Refresh Token for Tokens

curl --request POST \
  --url https://signin.altostrat.io/oauth/token \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data grant_type=authorization_code \
  --data 'client_id=<string>' \
  --data 'code=<string>' \
  --data 'redirect_uri=<string>' \
  --data 'code_verifier=<string>'

{
  "access_token": "<string>",
  "refresh_token": "<string>",
  "id_token": "<string>",
  "token_type": "Bearer",
  "expires_in": 86400
}

POST

oauth

token

Exchange Code or Refresh Token for Tokens

curl --request POST \
  --url https://signin.altostrat.io/oauth/token \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data grant_type=authorization_code \
  --data 'client_id=<string>' \
  --data 'code=<string>' \
  --data 'redirect_uri=<string>' \
  --data 'code_verifier=<string>'

{
  "access_token": "<string>",
  "refresh_token": "<string>",
  "id_token": "<string>",
  "token_type": "Bearer",
  "expires_in": 86400
}

Body

application/x-www-form-urlencoded

Option 1
Option 2

grant_type

enum<string>

Available options:

authorization_code

client_id

string

code

string

redirect_uri

string<uri>

code_verifier

string

Response

Successfully exchanged for a new set of tokens.

access_token

string

The JWT used to call protected APIs. See AccessTokenPayload.

refresh_token

string

A long-lived token for obtaining a new access_token.

id_token

string

A JWT containing user profile information (claims).

token_type

string

Example:

"Bearer"

expires_in

integer

Example:

86400

Initiate User Authentication

Get User Profile

⌘I