seems the refresh token we got is not jwt token, is there any doc to describe the type of auth0 refresh token?
Hello @yurou.cheng welcome to the community!
You are correct in that refresh tokens are not JWT, but rather a “credential artifact” as Auth0 refers to them in documentation. I think the following definition is best:
https://oauth.net/2/refresh-tokens
Hope this helps!