IDP's token not valid when we call api in postman

I got access token which I am using to get IDP token. When I get IDP token and run in postman by adding it in a header and performing GET request to endpoint, it gives an error like below.

{“error”:{“code”:“InvalidMsaTicket”,“message”:“ErrorCode: ‘PP_E_RPS_REASON_TIMEWINDOW_EXPIRED’. Message: ‘’”,“innerError”:{“requestId”:“7804322f-969e-43c6-ae20-58741d57b18e”,“date”:“2018-12-06T15:25:10”}}}

any help?

This probably means that the IdP Access Token is expired. Auth0 doesn’t ask for a refresh token when authenticating through the Microsoft Account strategy, so this IdP Access Token is basically useful for actions taken immediately after login (e.g. obtain some additional profile info from a rule) or shortly thereafter.

If your application core functionality depends on the IdP token to access an external API the suggestion would be to issue a separate request to get an access token (and refresh token if it makes sense) directly from the IdP.

1 Like

Thanks for your help.

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.