Refresh Access Token

Access tokens expire after an hour of generation. To generate a new access token, use the refresh token you generated earlier.


You must use your domain-specific Zoho Accounts URL to refresh your access token.

  • For US:

  • For AU:

  • For EU:

  • For IN:

  • For CN:

  • For JP:

  • Make a POST request with the following URL:

  • If the request is successful, you will receive the following output:

        "access_token": "{new_access_token}",
        "expires_in": 3600,
        "api_domain": "",
        "token_type": "Bearer"
  • A "User" in an organization can have a maximum of 20 refresh tokens. And each refresh token can have a maximum of 30 active access tokens (non expired).

  • When a user creates a 31st access token, the system deletes the first created access token. Similarly, when the user creates the 21st refresh token, the system deletes the first created refresh token.

  • You can only generate a maximum of five refresh tokens in a minute.

  • We have provided a sample test OAuth in all the examples so that you can test any example on your own. You can replace the sample OAuth Token with your actual token to test requests from your Recruit account.