Refresh Token

Get a new access token using a refresh token. The old refresh token is invalidated and a new one is issued (token rotation).

POST /api/v1/auth/refresh

Request Body

Field	Type	Required	Description
`refresh_token`	string	Yes	Valid refresh token

{
  "refresh_token": "dGhpcyBpcyBhIHJlZnJl..."
}

Response

200: OK
400: Bad Request
401: Unauthorized

{
  "meta": {
    "success": true,
    "message": "Token refreshed successfully"
  },
  "data": {
    "access_token": "eyJhbGciOiJIUzI1NiIs...",
    "refresh_token": "bmV3IHJlZnJlc2ggdG9r...",
    "token_type": "Bearer",
    "expires_in": 3600
  }
}

{
  "meta": {
    "success": false,
    "message": "Validation failed",
    "details": {
      "refresh_token": "refresh_token is required"
    }
  },
  "data": null
}

{
  "meta": {
    "success": false,
    "message": "Invalid or expired refresh token"
  },
  "data": null
}

Request Body​

Response​

Request Body

Response