API ReferenceAuthentication API

Refresh access token

Exchanges a valid refresh token for a new access token. Refresh token must be provided in Authorization header or refresh_token cookie.

POST
/auth/refresh-token

Request Body

Refresh token (can also be in Authorization header)

body?string

Response Body

application/json

application/json

application/json

curl -X POST "https://loading/auth/refresh-token" \  -H "Content-Type: application/json" \  -d 'string'
{}
{
  "code": "string",
  "error": "string",
  "message": "string",
  "request_id": "string"
}
{
  "code": "string",
  "error": "string",
  "message": "string",
  "request_id": "string"
}

Create guest user account POST

Creates a temporary guest user account and returns JWT tokens. Guest users have limited access and can be upgraded to full accounts later.

Revoke Keycloak refresh token POST

Revokes a refresh token to invalidate it