Token_endpoint is the OAuth 2.0 Endpoint on the Authorization Server where the OAuth Client exchanges the Authorization Grant, client_id and Client Secret, for an Access Token by submission of Access Token Request. To obtain an Access Token, an OpenID Connect Identity Token, and optionally a Refresh Token, the OAuth Client sends a Token Request to the Token_endpoint to obtain a Access Token Response, as described in Section 3.2 of OAuth 2.0 RFC 6749, when using the Authorization Code Flow.

Communication with the Token_endpoint MUST utilize TLS.

More Information#

There might be more information for this subject on one of the following: