Authentication

Refresh token

POST/v1/auth/refresh

Exchange a valid refresh token for a newly issued access token without re-authenticating. Optionally rotate the refresh token in the same call.

Request

curl --request POST \
  --url https://api.sysos.app/v1/auth/refresh \
  --header "Authorization: Bearer ACCESS_TOKEN" \
  --header "Content-Type: application/json" \
  --data '{
    "rotate_refresh_token": true,
    "client_version": "2.4.1"
  }'

Response `200 OK`

{
  "access_token": "eyJhbGciOiJIUzI1NiIs...",
  "refresh_token": "rt_5f1c0d8e...",
  "expires_at": "2026-03-01T19:25:43Z",
  "refresh_token_expires_at": "2026-06-01T18:25:43Z"
}