Reference pages

Use these pages as reference documentation when implementing the implicit grant flow in your application. Adapted from The OAuth 2.0 Authorization Framework specification [RFC 6749].

An overview of the refresh token flow

Figure 2 from RFC 6749

The steps are as follows:

A: The client requests an access token by authenticating with the service provider and presenting an authorization grant.
B: The authorization server of the service provider authenticates the client and validates the authorization grant and, if valid, issues an access token and optionally a refresh token.
C: The client makes a protected resource request to the resource server ...

Get Mastering OAuth 2.0 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering OAuth 2.0 by Charles Bihis

Reference pages

An overview of the refresh token flow

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly