Refresh token

[DouglasWillan7]

I couldn't find a way to refresh my token using Keycloak's own endpoints.

Is there another method to call the correct route using the library, by sending the refresh token instead of the password?

[psavva]

This is how I do it based on oAuth Specifications.

public async Task<Token> RefreshToken(string refreshToken)
       {
           var token = new Token();
           var idpEndpoint = _configuration["Jwt:Authority"] + _configuration["Jwt:TokenEndpoint"];
           var clientId = _configuration["Jwt:client_id"];
           var clientSecret = _configuration["Jwt:client_secret"];
           var grantType = "refresh_token";

           try
           {
               var client = new HttpClient();

               client.DefaultRequestHeaders.Accept.Clear();
               client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/json"));

               var values = new Dictionary<string, string>
               {
                   { "client_id", clientId },
                   { "client_secret", clientSecret },
                   { "grant_type", grantType },
                   { "refresh_token",refreshToken}
               };

               var content = new FormUrlEncodedContent(values);
               var response = await client.PostAsync(idpEndpoint, content);
               var responseString = await response.Content.ReadAsStringAsync();
               token = JsonConvert.DeserializeObject<Token>(responseString);

           }
           catch (Exception ex)
           {
               throw new Exception(ex.Message);
           }

           return token;
       }

[DouglasWillan7]

In this case, I need to understand if there's a way to do this using the component itself, without having to create a separate method.

[societ-campbellwray]

Thanks for the assistance @psavva!

@DouglasWillan7 unfortunately there isn't anything in the library that supports refreshing tokens and in general when it comes to issuing tokens the library is quite limited.

The majority of the logic is contained within these two files:

• https://github.com/silentpartnersoftware/Keycloak.Net/blob/main/src/Keycloak.Net.Core/KeycloakClient.cs
• https://github.com/silentpartnersoftware/Keycloak.Net/blob/main/src/Keycloak.Net.Core/Common/Extensions/FlurlRequestExtensions.cs

There is also a previous issue here where I go into some additional details about issuing tokens, but basically if you want to customise the token issuing flow you would need to write your own getToken function, and pass it into the KeycloakClient constructor

• Inefficient token management #34

In general I suspect that most people using this library (myself included) are issuing new tokens for each request, as there haven't been any PRs to contribute anything more sophisticated.

Sorry I couldn't be of more help. As always we welcome any contributions that would help improve the library.