Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

[Question] How to access refresh token

See original GitHub issue

Hi I need to keep refresh token in the database to sync up with client’s inbox. I couldn’t find any legal way to retrieve a refresh token from the IAuthenticationResult. I think up with temporal dirty workaround using reflection:

try {
            //see com.microsoft.aad.msal4j.AuthenticationResult#refreshToken
            final Field refreshTokenField = credentials.getClass()
                .getDeclaredField("refreshToken");
            refreshTokenField.setAccessible(true);
            return refreshTokenField.get(credentials).toString();
        } catch (IllegalAccessException | NoSuchFieldException e) {
            throw new RuntimeException(e);
        }

Is there better anyway to retrieve a refresh token? Serialize TokenCache doesn’t look much better for me.

Issue Analytics

State:
Created 3 years ago
Comments:10 (5 by maintainers)

Top GitHub Comments

1reaction

sangonzalcommented, May 4, 2020

@sleshJdev Does ‘acquireTokenSilently’ work for your scenario? MSAL doesn’t expose the refresh token but instead takes care of refreshing the access token for you. When you acquire a token with any of the APIs, MSAL will store the refresh token in an in-memory cache, which you can save to disk. AcquireTokenSilently() will first look into the cache, see if you have a valid access token, and if not then will try to refresh the refresh token.

0reactions

navyasriccommented, May 12, 2020

Closing this issue as the question has been answered above.