Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can't retrieve refresh_token with offline_access scope when using oauth2 3lo in jira app integration

Jono Kolnik
Jono Kolnik November 6, 2018

Hi,

 

I can't seem to get a refresh token back in my authorization request. I have included the offline_access scope as direction in these docs

Here is my url:

 https://accounts.atlassian.com/login?state=6Xru9ZOjlRraECLpqflkZutaP-xURm6A&client=wKF8CdQoIjP022LJnfMjC2pIDgYg0A2q&protocol=oauth2&prompt=consent&audience=api.atlassian.com&scope=offline_access%20read%3Ajira-user%20read%3Ajira-work%20manage%3Ajira-project%20write%3Ajira-work&redirect_uri=http%3A%2F%2Flocalhost%3A3001%2Fjira&response_type=code

 

I am trying to make it so that the user of my integration doesn't need to re-auth every hour (which seems to be the expiration length of the oauth token)

 

Thank you!

Answer
Watch
Like Be the first to like this
4179 views

3 answers

1 vote
Henry_Cooper
Henry_Cooper April 6, 2019

If anyone is still struggling, the refresh token is provided in the same dictionary as the access token.

 

So get the code using the authorisation url (making sure to add offline_access); your refresh token will then be in the response when you use that code to get the access token

View More Comments
Vinit Payal
Vinit Payal October 22, 2020

@Henry_Cooper not working for me as well as I adding the offline_access in the scopes in authorisation URL and got code but while using the code to get the access token am getting only acess_token and not the refersh_token :(

Like
Reply
0 votes
Shaker
Shaker August 12, 2021

it works for me but I think you are using the wrong URL it must be "https://auth.atlassian.com/authorize

or they just fixed it.

so basically you will get your refresh_token after you request for the access_token.

 I hope this will help. 

Reply
0 votes
Tarik Yurt
Tarik Yurt December 18, 2018

Following this documentation https://developer.atlassian.com/cloud/jira/platform/oauth-2-authorization-code-grants-3lo-for-apps:

1.  Add `offline_access` to scope in the request to `https://auth.atlassian.com/authorize`, it will not return the refresh token.

2. Continue to the second step in the documentation: getting cloudid. Use the code from callback as in the documentation, the response of this request includes the `refresh_token`.

View More Comments
Aman Kumar
Aman Kumar August 19, 2020

I didn't find it to be true.

Like
Gideon Daniel Felt
Gideon Daniel Felt February 22, 2021

This does not work. I still can't seem to get the refresh token in the first place myself. from when exchanging the code. I don't get the refresh token.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events