Refresh Token
POST/user-svc/refresh-token
Refreshes an existing token, including inactive ones. The old token becomes inactive (if not already inactive), and a new, active token is issued. This allows continued verification of user roles without requiring a new login. Inactive tokens are refreshable unless explicitly revoked (no mechanism for this yet). Leaked tokens should be handled separately, via a revocation flag or deletion.
Responses
- 200
- 401
- 500
Refresh Token successful
Unauthorized
Internal Server Error