从刷新令牌重新生成访问令牌 [英] Re-Generate Access Token From Refresh Token

问题描述

我有一个为Office365登录生成的刷新令牌. 我使用以下权限集生成了它

I have a refresh token that got generated for office365 login. I generated it using the following set of permissions

openid offline_access Calendars.ReadWrite.Shared profile email https://graph.microsoft.com/User.Read

现在，我想从刷新令牌中生成具有一些不同权限集的访问令牌 喜欢

Now I want to generate an access token from the refresh token with some different set of permissions like following

Group.Create, Group.ReadWrite.All, Directory.ReadWrite.All

是否可以从刷新令牌中获得具有某些不同权限集的访问令牌?

Is it possible to have an access token from refresh token with some different set of permissions?

这里有任何帮助.

推荐答案

是否可以从刷新令牌中获得具有某些不同权限集的访问令牌?

Is it possible to have an access token from refresh token with some different set of permissions?

不，这是不可能的.

新的访问令牌可以具有与原始访问令牌相同的到期时间和范围，或者可以指定为具有较短的寿命，并且原始访问令牌的作用域子集较小.可以生成新的访问令牌以替换原始令牌，也可以生成新的访问令牌以用作其他令牌.您还可以使用刷新令牌调用来完全使原始访问权限和刷新令牌以及用户授予的所有权限到期.

The new access tokens can have the same expiration and scopes as the original access token, or can be specified to have a shorter lifespan as well as a smaller subset of scopes from the original access token. New access tokens can be generated in order to replace the original token or generated to serve as an additional token. You can also use refresh token calls to fully expire the original access and refresh tokens and any permissions granted by the user.

这篇关于从刷新令牌重新生成访问令牌的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！