Spec exchanging refresh tokens for new access tokens

pull/977/head
Daniel Wagner-Hall 9 years ago
parent 902c7d3ea6
commit 0440983c4a

@ -1087,10 +1087,33 @@ On success, this returns a JSON object with keys:
user_id user_id
The fully-qualified Matrix ID that has been registered. The fully-qualified Matrix ID that has been registered.
access_token access_token
An access token for the new account. An access token for the account. This token may expire at some point, and if
so, it MAY come with a refersh_token, described below.
refresh_token (optional)
A refresh token may be exchanged for a new access_token as described in
`Refreshing access tokens`.
home_server home_server
The hostname of the Home Server on which the account has been registered. The hostname of the Home Server on which the account has been registered.
Refreshing access tokens
~~~~~~~~~~~~~~~~~~~~~~~~
Exchanging a refresh token for an access token is done using the request::
POST $PREFIX/tokenrefresh
The body of the POST request is a JSON object containing:
refresh_token
The refresh token.
On success, this invalidates the refresh token, so that it cannot be used again,
and returns a JSON object with keys:
access_token
An access token for the account, as is returned from login.
refresh_token (optional)
A refresh token, as is returned from login.
Changing Password Changing Password
~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~
This section refers to API Version 2. These API calls currently use the prefix This section refers to API Version 2. These API calls currently use the prefix

Loading…
Cancel
Save