...
code: The authorization code generated by ArchieKeycloack.
state (optional): The state parameter provided by the client, if any.
...
The first field is the actual access token which should be kept on the server and never passed to the end user's browser. The token_type will always be "Bearer" in Archie's implementationthis implementation. The number of seconds that the token is valid is given in expires_in. A refresh_token field is only returned if the access_type in step A is set to "offline".
...
In case of an error condition Archie Keycloack responds with a HTTP 400 status code with the error message included in the body of the response as a JSON object, e.g.:
...
The access_token field contains the actual access token. The token_type will always be "Bearer" in Archie's implementationKeycloack implementation. The number of seconds that the token is valid is given in expires_in.
...
In case of an error condition Archie responds Keycloack responds with a HTTP 400 status code with the error message included in the body of the response as a JSON object, e.g.:
...