Refresh Application

The flow of refreshing access and id tokens.

An explanation of the above diagram is given below.

1. 3rd Party Application access resource server.
2. Resource server responses with 401 Unauthorized.
3. 3rd Party App requests id token in exchange for refresh token from auth server.
   1. Refer the API spec for the Refresh endpoint here
4. Tokens will be returned to the 3rd Party Application. There will be only one token returned (id token). 3rd Party Applications should use the same refresh token for every token exchange.
   1. id_token - This token will be used to grant permission in GrubTech. This is similar to the example given in the above section Application Installation.