Overview of OpenID Connect tokens

This topic presents an overview of the two types of tokens in OpenID Connect: ID tokens and access tokens.

These tokens can be used to gain access to users' information and to protected resources on behalf of the users. The authorization server authenticates the user and, in some cases, the client application, before producing these tokens to the client.

Optionally, refresh tokens can also be produced by the authorization server. The client application can use these refresh tokens to request new access tokens without re-authenticating the user.

To learn more about how these tokens can be generated and utilized by the client application, see the Overview of OIDC authentication topic.

To learn more about the tokens, see: