Refresh token is not coming along with access token

Ravi P 25 Reputation points
2024-02-07T13:23:24.07+00:00

Hello ,

As per the official documentation, we should get the refresh_token along with access token but I am not getting. Could some one correct me https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow#protocol-details.

Do we have any separate API to get the refresh_token , let me know the details. -How long is refresh, and access token valid for ?

Thanks, Ravi P.

Microsoft Entra
{count} vote

1 answer

Sort by: Most helpful
  1. Navya 15,465 Reputation points Microsoft Vendor
    2024-02-08T07:04:29.54+00:00

    Hi @Ravi P

    Thank you for posting this in Microsoft Q&A.I understand that you want to get access token along with refresh token.

    No, you don't need any separate API to get the refresh_token. The default lifetime of an access token is variable. When issued, the Microsoft identity platform assigns a random value ranging between 60-90 minutes (75 minutes on average) as the default lifetime of an access token.

    To get refresh token along with access token you need to pass offline_access scope in the request.

    Follow the below steps to get access token and refresh token.

    1.Register an enterprise application in Microsoft Entra admin center.

    2.Add offline_access scope to the application. Go to your application - select API permissions - Add a permission - Microsoft API -Microsoft Graph API - Delegated permissions - Select offline_access -Click on add permission. Grant admin consent to the scopes.

    User's image

    3.Request an authorization code.

    https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize?
    client_id= Application_id
    &response_type=code
    &redirect_uri= https://login.microsoftonline.com/common/oauth2/nativeclient
    &response_mode=query
    &scope=user.read offline_access
    

    Once the user authenticates and grants consent, the Microsoft identity platform returns an authorization code.

    4.Use Postman to request an access token and a refresh token with below values.

    Replace your application tenant, ClientID, code (which you got in previous step),redirect_uri

    User's image You will receive an access token and a refresh token as shown in the image below.

    User's image Hope this helps. Do let us know if you any further queries. Thanks,

    Navya.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    3 people found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.