Refresh token re-authentication is the process that enables an BBK to authenticate a TPP more than once for the same consent.
In order to re-authenticate a consent:
Change the authorized accounts during re-authentication:
1.1 Exchange authorization code to resource token (get resource token)
When TPP sending a request for exchanging authorization code to resource token, TPP will receive a response with the refresh_token field, and if TPP needs to refresh its token, the value from refresh_token must be used in the access_token field submitted for request 1.2.
Request:https://<host>:<port>/as/token.oauth2
grant_type:authorization_code
code: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
client_assertion_type:urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
client_assertion:eyJhbGciOiJSUzUxMiIsImtpZCI6IjEyMzQ1IiwidHlwIjoiSldUIn0.eyJpc3MiOiJUUFAxIiwiaWF0IjoxNTY1Nzg5MDcxLCJleHAiOjE1OTcxOTA0MDAsImF1ZCI6Ii9hcy90b2tlbi5vYXV0aDIiLCJzdWIiOiJzNkJoZFJrcXQzIn0.UT3LqxuMzCxPC6hUdcr3t04UMt0iFBHGnCUytreqgmnE8qxauJlwsSnIcol8p2-YxdPDAn82b4kgREfr8gcOoPRKhkW1BJElsxiG3g9rqJ6TXTaNXChllldZbuy3JxutsmpNZXMayl7XgzcRwrAdWGWf7WdXmrDdK7XwBdbhnGu1IhZxSb97yP51N3R41OCGnS9IgfnnqJiWOp72nlWNCFQjoPFFhFV26a60OVHVTXjoNLn5QTIoGarwgcDC6JWvyyXh7flAIeQZP7Rw0PzYWvQ1YkNSI_A9UIa7WN5-W8g5oyHAJuAwurO0hgbwKaTl903l8IF8kY2H5GE_1iDuOg
Responce:
{
"access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiJ9.eyJzdWIiOiJUUFAxIiwiY29uc2VudElkIjoickMzSmRTVWpSdnV6S1gtczBlS2tTdyIsImlzcyI6IkFQSV9HVyIsImV4cCI6MTU3MDI3MzExOSwidG9rZW5fdHlwZSI6IlJFU09VUkNFIiwiaWF0IjoxNTcwMTg2NzE5fQ.VdRprufxGOCXJL6_bl8fKB4q6CInXVvwubAT7RxOEr5araICkrryFsQRnHkLDm_9Hj3qGAJh1OzOROW8VaSLFj69uM_6Ldp-HQW6ZCX3I_-sCrCDlnFkqaAW0TIUeprwG03GrvxJFufG-wOeQZoxWLorxzM3oSIx3ZynTPWLc6gMSb9nD8_P9OVepjhf1zouj9Xpee9-qzsUpLInuQ6g0-8af5FQUFSRiq7MF4mFiq8YUwPFYkhu1gQ7QOEPtOx8V4NI7N25CT7TJhWDq9P5Xyvya5BKMxpbfytOn4ZXIGGtW6f6CKPo921uPJCk-VlAU2N6sxk5r73_3mquTeosJw",
"expires_in": 86400,
"token_type": "bearer",
"refresh_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiJ9.eyJzdWIiOiJUUFAxIiwiY29uc2VudElkIjoickMzSmRTVWpSdnV6S1gtczBlS2tTdyIsImlzcyI6IkFQSV9HVyIsImV4cCI6MTU3MDM1OTUxOSwidG9rZW5fdHlwZSI6IlJFRlJFU0giLCJpYXQiOjE1NzAxODY3MTl9.K3kgrhV_JhdAGcS95u-dMvNFsR4v0roNm8Wh8swdwHiYZS6x2rADIR9FWDyH5jM3OUWBUVMbsv48h5XGSGIBnjN4rQK2g7T4o_FJe1iRG4OObts-oSoZjsI9Xr0u8P9P7-6X9W5qpX3Bx3_m1dH3qOjrK9AZBdyAMSq-gYSa7_ZMe7SDaOnoaQhuwXEcBNZfpxBZuZST8LWJudzfjCGjW6pFZ_A56B8QoKvZej8ghZEud-j5IsH1II0XNZAI1hxKqKCN6sv3VE7nK4lWxXGYx7wi7gIXqv4tDl8oCWUZYdmN3NxOdD6yFG2M4zL0r1SbMJHN_KNcg3t4OpZakerokQ"
}
1.2 Request for refresh resource token (get resource token)
Request:https://<host>:<port>/as/token.oauth2
grant_type:refresh_token
client_assertion_type:urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
client_assertion:eyJhbGciOiJSUzUxMiIsImtpZCI6IjEyMzQ1IiwidHlwIjoiSldUIn0.eyJpc3MiOiJUUFAxIiwiaWF0IjoxNTY1Nzg5MDcxLCJleHAiOjE2MDA0NzM2MDAsImF1ZCI6Ii9hcy90b2tlbi5vYXV0aDIiLCJzdWIiOiJzNkJoZFJrcXQzIn0.mhYpAB-eUlvlyg5sApTKf9chVVIBGAczHFvYsqwTt_RDMrRnUvU666iD2EDlCH_USaHR2h8UtPVKvfg6_Yl7lHmGECDqDrrIv05M750rOT8Wh2dAUmxwfFk1KW1X0dDGWTRh7NCfFqHIjjdBp0MRVZLodZn5t5EUMObGTg1XBmA6sMzxA8Pf_0GIdeQ4vvSx58cUtu7A0OtBYcu-_bHd16BW15r3Hit2TNHtekMUb5DunR4E5YJ7Q78h4xW2rjZqmS5sQoRC_jzLAvaPFsLJAmyWCp9z8oUPbAYUnGxLmGIsZN9_hC_w7gDDTeP3EvS36UkuCxEPWM1DopZ3gKqqAQ
refresh_token:eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiJ9.eyJzdWIiOiJUUFAxIiwiY29uc2VudElkIjoickMzSmRTVWpSdnV6S1gtczBlS2tTdyIsImlzcyI6IkFQSV9HVyIsImV4cCI6MTU3MDM1OTUxOSwidG9rZW5fdHlwZSI6IlJFRlJFU0giLCJpYXQiOjE1NzAxODY3MTl9.K3kgrhV_JhdAGcS95u-dMvNFsR4v0roNm8Wh8swdwHiYZS6x2rADIR9FWDyH5jM3OUWBUVMbsv48h5XGSGIBnjN4rQK2g7T4o_FJe1iRG4OObts-oSoZjsI9Xr0u8P9P7-6X9W5qpX3Bx3_m1dH3qOjrK9AZBdyAMSq-gYSa7_ZMe7SDaOnoaQhuwXEcBNZfpxBZuZST8LWJudzfjCGjW6pFZ_A56B8QoKvZej8ghZEud-j5IsH1II0XNZAI1hxKqKCN6sv3VE7nK4lWxXGYx7wi7gIXqv4tDl8oCWUZYdmN3NxOdD6yFG2M4zL0r1SbMJHN_KNcg3t4OpZakerokQ
Responce:
{
"access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiJ9.eyJzdWIiOiJUUFAxIiwiY29uc2VudElkIjoickMzSmRTVWpSdnV6S1gtczBlS2tTdyIsImlzcyI6IkFQSV9HVyIsImV4cCI6MTU3MDI3MzM3OCwidG9rZW5fdHlwZSI6IlJFU09VUkNFIiwiaWF0IjoxNTcwMTg2OTc4fQ.lKwfDQndfAzgBH-parzZIQcuornPYIQuHaMM1xTSM3Hr8v1UFX3_veCfVESpUXSrh46D1Tbq9Y8xxOOsZtiy_dsBum4mKGchOTrvCg-sEM89TIwrU3tSqMGq7uOYci8iF3wjL64Tl66DcJ5TI3cE-jyS0ybRF_BwwcT6U1z5FXm6FcKiPikJ3eSN1WTLTWSAUrQsJSsXn-ajrF3anE1xg38EvZK_FjJDJ4ph2K4uwXpl5_fdTks807WRE8ZlDLYB-7f3EF8M0HzgTqBH95-v4kAwZukGssTMER-nh7ap93ekVugRSZIxGD9g2qLJnIdORzRQjD9OHs82UuumOiHcCA",
"expires_in": 86400,
"token_type": "bearer",
"refresh_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiJ9.eyJzdWIiOiJUUFAxIiwiY29uc2VudElkIjoickMzSmRTVWpSdnV6S1gtczBlS2tTdyIsImlzcyI6IkFQSV9HVyIsImV4cCI6MTU3MDM1OTc3OCwidG9rZW5fdHlwZSI6IlJFRlJFU0giLCJpYXQiOjE1NzAxODY5Nzh9.cxQfhy5j3-1eB6yUu38OVBNXXc_yZ3qOaKRPBQvGjn73iohAemkHkrybE7ORI0f2KO-PRK1FoTmqlMVM7V0p8KuKxv640pZla2CUGgKHhlhE_5TYJYqB-D2q3R1BOJvZG5XBD07c51DO0a_RyLAQGzKN3Z4Xvmv7-8_R05wIroopPSIYfHrLJMlHhF1XrpfjOpACUxor7iBeRIir9Edrvp8tQo3Bf-kJ3Iw17tBQ68z26zBr5Zy7K-Bg4R3HvmeG93oAWxfE9AwOxyTsPf6ChsK3-F5TTHo0xRNLZFrNlugaw3y8fdufjK5LP9p6LxA9v9YF_Ss_dnrf5SzxrRCufg"
}