get https://{application_vanity_domain}/api/v1/users//refresh-tokens
Queries refresh tokens, scoped to a user, based off a query expression.
Query Filter Attributes:
| Name | Type | Case Sensitive | Supported Comparison Operators |
|---|---|---|---|
metadata.creationTime | String | Yes | eq, ne, lt, le, gt, ge, in, nin |
Sort Attributes:
metadata.creationTime
Required Permissions
Below is the list of required permissions needed to interact with this API. For each permission the allowed permission boundaries are also specified.
| Permission | Boundary | Description |
|---|---|---|
| refresh-token:read | Application | The subject can perform this query if the user specified in the URL path belongs to the subject's associated application. |
| Tenant | The subject can perform this query if the user specified in the URL path belongs to the subject's associated tenant. | |
| Tenant Inclusion List | The subject can perform this query if the user specified in the URL path belongs to a tenant included in the tenant inclusion list. | |
| Tenant Exclusion List | The subject can perform this query if the user specified in the URL path belongs to the subject's associated application but is not associated with a tenant in the tenant exclusion list. | |
| Self | A user subject can query their own refresh tokens |