I am using IdentityServer3's Hybrid Flow. I have enabled the offline_access scope inorder to get refresh token. When my access token expires, I am calling core/connect/token endpoin. I am passing client_id, client_secret, refresh_token and grant_type (= refresh_token) as part of body. I am getting invalid_grant error.
Asked
Active
Viewed 1,830 times
2
Sabby62
- 1,707
- 3
- 24
- 37
-
have you tried turning on logging? – leastprivilege Dec 02 '15 at 19:48
1 Answers
2
Make sure that the Client configuration should have "RefreshTokenExpiration" attribute set as TokenExpiration.Absolute and "RefreshTokenUsage" attribute is set to "OneTimeOnly". This should make it work !
Pravin
- 839
- 7
- 12