you have to exchange the auth code for an acc

Question

< U035X547VB6> you have to exchange the auth code for an access token

sticky-guitar-94474 · Answer

Hi < U0226P4G4FQ> thanks for the response I have found this API call to make to Hydra Public Endpoint I am not sure where can I get the refresh token using the code we received in the Previous step

early-dinner-11174 · Answer

you don t need a refresh token for this grant type

early-dinner-11174 · Answer

you may need to provide the client secret depending on the client settings

early-dinner-11174 · Answer

Each client can set `token endpoint auth method` when it is created A public client can specify `none` which means it won t have a client secret and doesn t need to auth on the token endpoint

early-dinner-11174 · Answer

The options are client secret post client secret basic private key jwt and none

early-dinner-11174 · Answer

client secret post means you add `client secret` as a body parameter to the token request

early-dinner-11174 · Answer

client secret basic means you use client id client secret as basic auth credentials to the token endpoint

early-dinner-11174 · Answer

private key jwt I ve not used this so I don t know the details

early-dinner-11174 · Answer

do you know how your client is configured

sticky-guitar-94474 · Answer

Ohh understood So when I received the Code in the first step I should be making a call to the Backend Server to get me an Access Token Is that correct

early-dinner-11174 · Answer

you can look it up in the admin api

early-dinner-11174 · Answer

yes

sticky-guitar-94474 · Answer

I am creating the clients Right now I am playing around to get clear idea on the nuts and bolts of Hydra

sticky-guitar-94474 · Answer

< U0226P4G4FQ> Thanks for the info I was able to get the Bearer Token and then used the standard introspection endpoint Also the Token endpoint itself to generate a new Bearer token using Refresh Token