Request New Access Token

curl --request POST \
  --url https://api.replyke.com/api/v6/:projectId/auth/request-new-access-token \
  --header 'Content-Type: application/json' \
  --data '
{
  "refreshToken": "<string>"
}
'

{
  "success": true,
  "accessToken": "<string>",
  "user": {
    "id": "<string>",
    "email": "<string>",
    "username": "<string>",
    "name": "<string>",
    "avatar": "<string>",
    "bio": "<string>",
    "location": {
      "type": "<string>",
      "coordinates": [
        123
      ]
    },
    "birthdate": "<string>",
    "metadata": {},
    "suspensions": [
      {}
    ],
    "reputation": 123,
    "createdAt": "<string>",
    "updatedAt": "<string>"
  }
}

POST

:projectId

auth

request-new-access-token

Request New Access Token

curl --request POST \
  --url https://api.replyke.com/api/v6/:projectId/auth/request-new-access-token \
  --header 'Content-Type: application/json' \
  --data '
{
  "refreshToken": "<string>"
}
'

{
  "success": true,
  "accessToken": "<string>",
  "user": {
    "id": "<string>",
    "email": "<string>",
    "username": "<string>",
    "name": "<string>",
    "avatar": "<string>",
    "bio": "<string>",
    "location": {
      "type": "<string>",
      "coordinates": [
        123
      ]
    },
    "birthdate": "<string>",
    "metadata": {},
    "suspensions": [
      {}
    ],
    "reputation": 123,
    "createdAt": "<string>",
    "updatedAt": "<string>"
  }
}

Request a new access token using a valid refresh token. The refresh token can be sent in the request body or as an HttpOnly cookie.

Headers

Can include replyke-refresh-jwt cookie with the refresh token

Body Parameters

refreshToken

string

JWT refresh token (optional if provided via cookie). Cookie takes precedence if both are provided.

Response

success

boolean

Indicates whether the token refresh was successful

accessToken

string

New JWT access token (null if no refresh token provided)

user

User Object

Current user object (null if no refresh token provided)

Show properties

string

Unique user identifier

string

User’s email address

username

string

User’s username

name

string

User’s full name

avatar

string

URL to user’s avatar image

bio

string

User’s biography

location

object

Show properties

type

string

GeoJSON type (always “Point”)

coordinates

number[]

Array of [longitude, latitude]

birthdate

string

User’s birthdate in ISO 8601 format

metadata

object

Custom public metadata

suspensions

array

Array of active suspensions

reputation

number

User’s reputation score

createdAt

string

Account creation timestamp

updatedAt

string

Last update timestamp

Error Responses

Invalid Refresh Token Structure - 403 Forbidden

{
  "error": "Invalid refresh token.",
  "code": "auth/invalid-refresh-token"
}

Token Not Recognized - 403 Forbidden

{
  "error": "Refresh token not recognized.",
  "code": "auth/refresh-token-mismatch"
}

User Not Found - 403 Forbidden

{
  "error": "User not found.",
  "code": "auth/no-user-found"
}

Invalid or Expired Token - 403 Forbidden

{
  "error": "Invalid or expired refresh token.",
  "code": "auth/refresh-token-invalid",
  "details": "<Error message>"
}

Notes

The replyke-refresh-jwt cookie takes precedence if both are provided.
Returns null tokens and user object if no token is supplied.

Sign Out Verify External User

Documentation Index

​Headers

​Body Parameters

​Response

​Error Responses

​Notes

Headers

Body Parameters

Response

Error Responses

Notes