Get an ID Token / OAuth2 access_token

You can use an OAuth2 refresh_token at this endpoint to get an ID Token and thus an OAuth2 access_token.

• Tokens issued by the IAM API are OpenID Connect JSON Web Tokens.
• OAuth2 access tokens issued by the IAM API are valid ID Tokens, and vice versa.

Make sure to use access_tokens and ID Token as long as they are not expired, before requesting new tokens. This API may restrict or penalize excessive token authorization and refresh requests.

Use the [Authorization: Bearer {{REFRESH_TOKEN}}] header to provide a refresh_token and obtain a fresh ID Token, accompanied by an access_token and optionally (a renewed) refresh_token. Tokens and responses are OAuth2 compatible.