Re: REST API refresh token
Omar Dottin
1-31-20
Hi Paul! Pasting the process flow along with answer for future reference:

Process Flow

1. 3rd party software/service makes a call to SERP REST API
2. SERP requests authentication (Standard ID + password) which appears as a login screen
3. SERP sends other software an access token and refresh token
4. 3rd party requests data from SERP, sending the access token with the request
5. after a few minutes, the access token expires and cannot be used again
6. without a refresh token, someone would need to enter the standard ID and password each time a connection is made. the refresh token prevents this and allows a new access token to be sent by SERP to the other software


Refresh Token Export:

When does Refresh Token Expire?
There is no expiry.

If we did set an expiry, it would mean that the user has to login with username and password every time they want to talk to our system which would not work well with full integration situations


Best Regards,
Omar
Leave Comment
You can subscribe to notifications for this post by selecting the 'star' icon on the top right corner of the post.
Latest Posts
David Delač
Hi Piotr, The log entry:
2024-12-14 08:40:43 0.000 CallHal(IsHansaWorldCustomer) appears because the server is running with the verbosity=debug-detailed setting in its parameters.txt file. Thi...
09:43 16 Dec 2024
Brittany McGrath
Hi Vaughn, I can confirm this has been fixed now and is live in Standard ERP 2024-11-20 Version: 85556786. Thank you. ...
10:04 10 Dec 2024