Refresh access token

Exchange an existing access token for a new one using the embedded refresh token ID. This endpoint implements:

Token rotation (old refresh token is invalidated)
Rate limiting (1ms minimum interval per refresh token)
Automatic cleanup of expired tokens
Security validation of token chains

Request Body

accessTokenstring

Current access token (can be expired)

Response Body

const body = JSON.stringify({
  "accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
})

fetch("https://app.orbiqhq.com/api/v1/refresh", {
  body
})

{
  "accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c"
}

{
  "error": "Missing or invalid accessToken in body"
}

{
  "error": "Invalid or malformed old access token"
}

{
  "error": "Method not allowed"
}

{
  "error": "Conflict"
}

{
  "error": "Token refresh failed."
}

How is this guide?

Refresh access token

Request Body

Response Body

200

400

401

405

409

500

Successful token refresh

Missing access token

Invalid JSON

Invalid access token

Refresh token not found

Token refresh failed

Invalid refresh response