[Openid-specs-ab] Refreshing ID Tokens

Torsten Lodderstedt torsten at lodderstedt.net
Sun Jul 29 19:43:28 UTC 2012


Hi all,

the standard spec only mentions refreshing access tokens. I'm wondering 
whether it is possible to refresh an ID Token based on a refresh token 
or whether this always require a request to the authorization endpoint. 
In my opinion, using offline refresh tokens for this purpose would be a 
valueable feature for apps.

regards,
Torsten.


More information about the Openid-specs-ab mailing list