Offline Data Access

In order to access user data after the user access token has expired, which is 1 hour by default, and the user cannot be prompted to log in again, Identity and Access Management can be configured to return a refresh token. The refresh token is a one-time token that can be used to obtain a new access token and another refresh token. Utilities are required to configure Identity and Access Management to return refresh tokens to support their use by third-party partners for periodic user data access.

To obtain a refresh token, Identity and Access Management supports special scope offline_access. Examples of requesting a refresh token in Authorization Code Flow are available at https://docs.oracle.com/en/cloud/paas/identity-cloud/rest-api/ACWebServerAppAuth.html .

Documentation for using the refresh token grant type is available at https://docs.oracle.com/en/cloud/paas/identity-cloud/rest-api/RefreshGT.html.