# Refresh access token

**POST /sessions/tokens**

Exchange a refresh token for a new access token. Access tokens expire after ~15 minutes. **Important:** Each call returns a new refresh token and invalidates the previous one - you must persist the new refresh token for future use. See the 'Getting Started' section for details.


## Servers
- Sandbox - Authentication: https://auth.bank.place (Sandbox - Authentication)


## Authentication methods
- Bearer auth


## Parameters
### Headers
- **Authorization** (string)
  Bearer token with refresh token value (not access token)




## Responses
### 200
New tokens generated successfully

#### Body: application/json (object)
- **accessToken** (string)
  JWT access token - use for API requests
- **refreshToken** (object)


### 401
Invalid or expired refresh token

#### Body: application/json (object)
- **errorCode** (string)
  Error code
- **message** (string)
  Error message


[Powered by Bump.sh](https://bump.sh)