Use an Endless refresh token (from a Cognito account) to obtain renewed id and access tokens.
POST /api/v1/auth/cognito/refresh HTTP/1.1
Accept: application/json
Content-Type: application/json
Authorization: Bearer ...
{}
----------------------------------------
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
{
"newAccount": false,
"idToken": "eyJra...q0w",
"accessToken": "eyJhb...Qjg"
}The refresh token must be passed as a bearer token.
NONE
NONE
An empty JSON object.
A successful response (code 200) will contain new id and access tokens. Besides the standard error responses, 403 is returned if the refresh token is missing, invalid, expired, or if the session has been revoked server-side.
| Name | Description | Value |
|---|---|---|
| newAccount | always false | boolean |
| idToken | the id JWT | string |
| accessToken | the access JWT | string |