Olympus Docs
ReferenceScopes

offline_access

Request a refresh token. Required for long-lived sessions.

OAuth2 scope: offline_access

Source: OIDC spec

Description

Request a refresh token. Required for long-lived sessions.

Requesting this scope

In the authorization URL:

GET /oauth2/auth?
  &scope=offline_access
  ...

Multiple scopes are space-separated.

Granting access

A client only receives this scope if it's on the client's allowed scope list. Configure in Athena → OAuth2 Clients → your client → Allowed Scopes.

Checking in your backend

The access token's scope claim contains the granted scopes:

const granted = info.scope?.split(" ") ?? [];
if (!granted.includes("offline_access")) return 403;

email

`email` and `email_verified` claims.

address

Postal address claims. Olympus doesn't ship this by default; available if you add a trait.

On this page

OAuth2 scope: offline_accessDescriptionRequesting this scopeGranting accessChecking in your backendRelated