Refresh Access Token

Access tokens expire after an hour of generation. To generate a new access token, use the refresh token you generated earlier.


You must use your domain-specific Zoho Accounts URL to refresh your access token.

  • For US:
  • For AU:
  • For EU:
  • For IN:
  • Make a POST request with the following URL:


  • If the request is successful, you will receive the following output:

    "access_token": "{new_access_token}",
    "expires_in": 3600,
    "api_domain": "",
    "token_type": "Bearer",


  • A "User" in an organization can have a maximum of 20 refresh tokens. And each refresh token can have a maximum of 30 active access tokens (non expired).
  • When a user creates a 31st access token, the system deletes the first created access token. Similarly, when the user creates the 21st refresh token, the system deletes the first created refresh token.
  • We have provided with a sample test OAuth in all the examples, so that you can test any example on your own. You can replace the sample OAuth Token with your actual token to test requests from your FSM account.