{"id":2750,"date":"2025-04-01T18:06:08","date_gmt":"2025-04-01T10:06:08","guid":{"rendered":"https:\/\/www.ruianding.com\/blog\/?p=2750"},"modified":"2026-02-07T15:10:29","modified_gmt":"2026-02-07T07:10:29","slug":"%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89","status":"publish","type":"post","link":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/","title":{"rendered":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09"},"content":{"rendered":"\n

\u5f15\u8a00<\/h2>\n\n\n\n

\u5728 \u7b2c\u4e00\u90e8\u5206<\/strong><\/a> \u4e2d\uff0c\u6211\u4eec\u6210\u529f\u5b9e\u73b0\u4e86 SSO \u670d\u52a1\u5668\u7684\u57fa\u672c\u767b\u5f55\u548c\u8ba4\u8bc1\u529f\u80fd\uff0c\u5141\u8bb8\u7528\u6237\u901a\u8fc7\u7528\u6237\u540d\u548c\u5bc6\u7801\u83b7\u53d6 Access Token\uff0c\u5e76\u4f7f\u7528\u8be5 Token \u8bbf\u95ee\u53d7\u4fdd\u62a4\u7684\u8d44\u6e90\u3002\u7136\u800c\uff0c\u76ee\u524d\u7684 Access Token \u6709\u6548\u671f\u4ec5\u4e3a 1 \u5c0f\u65f6\uff0c\u4e00\u65e6\u8fc7\u671f\uff0c\u7528\u6237\u5fc5\u987b\u91cd\u65b0\u767b\u5f55\u3002<\/p>\n\n\n\n

\u4e3a\u4e86\u63d0\u5347\u7528\u6237\u4f53\u9a8c\u548c\u5b89\u5168\u6027\uff0c\u6211\u4eec\u5c06\u5728\u672c\u90e8\u5206\u5b9e\u73b0 Refresh Token \u673a\u5236<\/strong>\uff0c\u5141\u8bb8\u7528\u6237\u5728 Access Token \u8fc7\u671f\u540e\uff0c\u65e0\u9700\u91cd\u65b0\u8f93\u5165\u7528\u6237\u540d\u548c\u5bc6\u7801\u5373\u53ef\u83b7\u53d6\u65b0\u7684 Token\u3002\u540c\u65f6\uff0c\u6211\u4eec\u8fd8\u5c06\u652f\u6301 Refresh Token \u7684\u540a\u9500\uff08Revoke\uff09<\/strong>\uff0c\u786e\u4fdd\u7528\u6237\u53ef\u4ee5\u5b89\u5168\u5730\u767b\u51fa\u6216\u7ba1\u7406\u5458\u53ef\u4ee5\u624b\u52a8\u7981\u7528\u67d0\u4e9b\u4f1a\u8bdd\u3002<\/p>\n\n\n\n

\n\n\n\n

\u73b0\u6709 Token \u673a\u5236\u7684\u95ee\u9898<\/h2>\n\n\n\n

\u76ee\u524d\uff0cAccess Token \u6709\u6548\u671f\u8bbe\u7f6e\u4e3a 1 \u5c0f\u65f6<\/strong>\uff0c\u4f46\u5b58\u5728\u4ee5\u4e0b\u95ee\u9898\uff1a<\/p>\n\n\n\n

    \n
  1. \u7528\u6237\u9700\u8981\u9891\u7e41\u767b\u5f55<\/strong>\uff0c\u4f53\u9a8c\u8f83\u5dee\u3002<\/li>\n\n\n\n
  2. \u65e0\u6cd5\u624b\u52a8\u64a4\u9500 Access Token<\/strong>\uff0c\u4e00\u65e6\u6cc4\u9732\uff0c\u53ea\u80fd\u7b49\u5b83\u81ea\u7136\u8fc7\u671f\u3002<\/li>\n\n\n\n
  3. \u7f3a\u4e4f\u957f\u671f\u4f1a\u8bdd\u7ba1\u7406<\/strong>\uff0c\u5f53\u524d Token \u673a\u5236\u5e76\u4e0d\u80fd\u7ef4\u6301\u957f\u671f\u4f1a\u8bdd\u72b6\u6001\u3002<\/li>\n<\/ol>\n\n\n\n

    \u4e3a\u4e86\u89e3\u51b3\u8fd9\u4e9b\u95ee\u9898\uff0c\u6211\u4eec\u5f15\u5165 Refresh Token \u673a\u5236<\/strong>\uff0c\u5b83\u4e3b\u8981\u89e3\u51b3\u4e86 \u7b2c 1 \u4e2a\u95ee\u9898<\/strong>\u2014\u2014\u51cf\u5c11\u7528\u6237\u9891\u7e41\u767b\u5f55\u7684\u9700\u6c42\u3002\u5bf9\u4e8e Token \u64a4\u9500\uff08\u7b2c 2 \u70b9\uff09<\/strong>\uff0c\u4ec5\u4ec5\u5f15\u5165 Refresh Token \u5e76\u4e0d\u80fd\u76f4\u63a5\u89e3\u51b3\uff0c\u4ecd\u7136\u9700\u8981\u914d\u5408\u5e94\u7528\u81ea\u8eab\u7684\u903b\u8f91\u6765\u7ba1\u7406 Token \u7684\u751f\u6548\u72b6\u6001\u3002\u4f1a\u8bdd\u7ba1\u7406\uff08\u7b2c 3 \u70b9\uff09<\/strong> \u4e5f\u662f\u4e00\u4e2a\u66f4\u5e7f\u6cdb\u7684\u95ee\u9898\uff0cRefresh Token \u53ea\u662f\u4f1a\u8bdd\u7ba1\u7406\u7684\u4e00\u90e8\u5206\uff0c\u5b8c\u6574\u7684\u4f1a\u8bdd\u7ba1\u7406\u901a\u5e38\u6d89\u53ca\u66f4\u591a\u673a\u5236\uff0c\u5982\u8bbe\u5907\u7ba1\u7406\u3001\u591a\u91cd\u8eab\u4efd\u9a8c\u8bc1\u7b49\u3002<\/p>\n\n\n\n

    \n\n\n\n

    \u6570\u636e\u5e93\u6269\u5c55<\/h2>\n\n\n\n

    \u4e3a\u4e86\u652f\u6301 Refresh Token\uff0c\u6211\u4eec\u9700\u8981\u5728\u6570\u636e\u5e93\u4e2d\u65b0\u589e refresh_tokens<\/code> \u8868\uff0c\u5b58\u50a8 Refresh Token \u76f8\u5173\u4fe1\u606f\uff1a<\/p>\n\n\n\n

    CREATE TABLE refresh_tokens (\n    id INT AUTO_INCREMENT PRIMARY KEY,\n    user_id INT NOT NULL,\n    token VARCHAR(64) UNIQUE NOT NULL,  -- \u5b58\u50a8 64 \u4f4d\u968f\u673a refresh token\n    expiry DATETIME NOT NULL,           -- \u8fc7\u671f\u65f6\u95f4\n    revoked BOOLEAN DEFAULT FALSE,      -- \u662f\u5426\u88ab\u64a4\u9500\n    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,\n    FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE\n);<\/pre>\n\n\n\n
    \u5b57\u6bb5\u89e3\u6790\uff1a<\/strong><\/p>\n\n\n\n
      \n
    • user_id<\/code>\uff1a\u5173\u8054 users<\/code> \u8868\uff0c\u8868\u793a\u8be5 Refresh Token \u5c5e\u4e8e\u54ea\u4e2a\u7528\u6237\u3002<\/li>\n\n\n\n
    • token<\/code>\uff1a\u5b58\u50a8 Refresh Token \u672c\u8eab\u3002<\/li>\n\n\n\n
    • created_at<\/code>\uff1a\u8bb0\u5f55 Refresh Token \u521b\u5efa\u65f6\u95f4\u3002<\/li>\n\n\n\n
    • revoked<\/code>\uff1a\u6807\u8bb0\u8be5 Refresh Token \u662f\u5426\u88ab\u540a\u9500\uff0c\u9ed8\u8ba4 FALSE<\/code>\uff08\u672a\u540a\u9500\uff09\u3002<\/li>\n<\/ul>\n\n\n\n
      \n\n\n\n
      \u5b9e\u73b0 Refresh Token \u673a\u5236<\/h2>\n\n\n\n
      1. \u767b\u5f55\u65f6\u5b58\u50a8 Refresh Token<\/strong><\/h3>\n\n\n\n
      \u5728\u7528\u6237\u767b\u5f55\u6210\u529f\u540e\uff0c\u6211\u4eec\u751f\u6210 Access Token\uff081 \u5c0f\u65f6\u6709\u6548\uff09\u548c Refresh Token\uff087 \u5929\u6709\u6548\uff09\uff0c\u5e76\u5c06 Refresh Token \u5b58\u5165\u6570\u636e\u5e93\u3002<\/p>\n\n\n\n
      2. \u4f7f\u7528 Refresh Token \u83b7\u53d6\u65b0\u7684 Access Token<\/strong><\/strong><\/h3>\n\n\n\n
      \u7528\u6237\u4f7f\u7528 Refresh Token \u7533\u8bf7\u65b0\u7684 Access Token \u65f6\uff0c\u6211\u4eec\u9700\u8981\u68c0\u67e5\u8be5 Token \u662f\u5426\u5b58\u5728\u4e14\u672a\u88ab\u540a\u9500\u3002<\/p>\n\n\n\n
      @app.route('\/login', methods=['POST'])\ndef token():\n    data = request.json\n    grant_type = data.get(\"grant_type\")\n\n    # --- \u767b\u5f55\u83b7\u53d6 token ---\n    if grant_type == \"password\":\n        username = data.get(\"username\")\n        password = data.get(\"password\")\n\n        cursor.execute(\"SELECT id, password_hash FROM users WHERE username = %s\", (username,))\n        user = cursor.fetchone()\n\n        if user and bcrypt.checkpw(password.encode(), user[1].encode()):\n            user_id = user[0]\n\n            access_token = generate_access_token(user_id)\n            refresh_token = generate_refresh_token(user_id)\n\n            return jsonify({\"access_token\": access_token, \"refresh_token\": refresh_token})\n\n        return jsonify({\"error\": \"Invalid username or password\"}), 401\n\n    # --- \u4f7f\u7528 refresh_token \u5237\u65b0 access_token ---\n    elif grant_type == \"refresh_token\":\n        refresh_token = data.get(\"refresh_token\")\n\n        if not refresh_token:\n            return jsonify({\"error\": \"Refresh token is required\"}), 400\n\n        cursor.execute(\"SELECT user_id, expiry, revoked FROM refresh_tokens WHERE token = %s\", (refresh_token,))\n        token_record = cursor.fetchone()\n\n        if not token_record:\n            return jsonify({\"error\": \"Invalid refresh token\"}), 401\n\n        user_id, expiry, revoked = token_record\n\n        if revoked:\n            return jsonify({\"error\": \"Refresh token has been revoked\"}), 401\n\n        if datetime.datetime.utcnow() > expiry:\n            return jsonify({\"error\": \"Refresh token has expired\"}), 401\n\n        new_access_token = generate_access_token(user_id)\n        return jsonify({\"access_token\": new_access_token})\n\n    return jsonify({\"error\": \"Invalid grant_type\"}), 400\n\n# \u751f\u6210 access token\ndef generate_access_token(user_id):\n    payload = {\n        \"user_id\": user_id,\n        \"exp\": datetime.datetime.utcnow() + datetime.timedelta(hours=app.config[\"ACCESS_TOKEN_EXPIRY_HOURS\"])\n    }\n    return jwt.encode(payload, app.config[\"SECRET_KEY\"], algorithm=\"HS256\")\n\n# \u751f\u6210 refresh token\uff08\u975e JWT\uff09\ndef generate_refresh_token(user_id):\n    refresh_token = secrets.token_hex(32)\n    expiry_time = datetime.datetime.utcnow() + datetime.timedelta(days=app.config[\"REFRESH_TOKEN_EXPIRY_DAYS\"])\n    cursor.execute(\"INSERT INTO refresh_tokens (user_id, token, expiry, revoked) VALUES (%s, %s, %s, %s)\", \n                   (user_id, refresh_token, expiry_time, False))\n    db.commit()\n    return refresh_token<\/pre>\n\n\n\n
      \u65b0\u65e7\u4ee3\u7801\u5bf9\u6bd4<\/strong><\/h4>\n\n\n\n
      \u6539\u52a8\u70b9<\/th>\u65e7\u4ee3\u7801<\/th>\u65b0\u4ee3\u7801<\/th><\/tr><\/thead>
      \u63a5\u53e3\u8def\u5f84<\/strong><\/td>\/login<\/code><\/td>\/token<\/code><\/td><\/tr>
      \u8bf7\u6c42\u53c2\u6570<\/strong><\/td>username<\/code>\u3001password<\/code><\/td>grant_type<\/code>\uff0c\u652f\u6301 \"password\"<\/code> \u548c \"refresh_token\"<\/code><\/td><\/tr>
      \u8fd4\u56de\u6570\u636e<\/strong><\/td>access_token (JWT)<\/code><\/td>access_token (JWT) + refresh_token (\u975e JWT)<\/code><\/td><\/tr>
      refresh_token \u5904\u7406<\/strong><\/td>\u65e0 refresh_token<\/strong><\/td>refresh_token<\/code> \u5b58\u6570\u636e\u5e93\uff0c\u53ef\u5237\u65b0 access_token<\/td><\/tr>
      access_token \u751f\u6210<\/strong><\/td>JWT\uff0c\u5e26 \"username\"<\/code><\/td>JWT\uff0c\u4ec5\u5b58 \"user_id\"<\/code><\/td><\/tr>
      refresh_token \u7ed3\u6784<\/strong><\/td>\u65e0<\/strong><\/td>\u751f\u6210 \u975e JWT<\/strong> \u968f\u673a\u5b57\u7b26\u4e32\uff0c\u5b58\u6570\u636e\u5e93<\/td><\/tr>
      \u6570\u636e\u5e93\u8868\u7ed3\u6784<\/strong><\/td>\u4ec5\u67e5\u8be2 users<\/code><\/td>\u989d\u5916\u7ef4\u62a4 refresh_tokens<\/code>\uff0c\u652f\u6301 token \u64a4\u9500\u548c\u8fc7\u671f<\/td><\/tr>
      \u9519\u8bef\u5904\u7406<\/strong><\/td>\u4ec5\u5904\u7406 \u767b\u5f55\u5931\u8d25<\/strong><\/td>\u989d\u5916\u5904\u7406 refresh_token \u8fc7\u671f\/\u64a4\u9500<\/strong><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
      \u5177\u4f53\u6539\u52a8\u70b9<\/strong><\/h4>\n\n\n\n
      1. \u6539\u7528 \/token<\/code> \u7aef\u70b9\uff0c\u652f\u6301 grant_type<\/code><\/strong><\/p>\n\n\n\n
      \u65e7\u4ee3\u7801<\/strong> \u53ea\u652f\u6301 \u7528\u6237\u540d\u5bc6\u7801\u767b\u5f55<\/strong>\uff1a<\/p>\n\n\n\n
      @app.route('\/login', methods=['POST'])\n<\/pre>\n\n\n\n
      \u65b0\u4ee3\u7801<\/strong> \u7edf\u4e00\u7528 \/token<\/code> \u5904\u7406\u4e24\u79cd\u60c5\u51b5\uff1a<\/p>\n\n\n\n
      @app.route('\/token', methods=['POST'])\n<\/pre>\n\n\n\n
        \n
      • \"password\"<\/code> \u6a21\u5f0f\uff1a\u7528\u6237\u540d + \u5bc6\u7801\u767b\u5f55<\/li>\n\n\n\n
      • \"refresh_token\"<\/code> \u6a21\u5f0f\uff1a\u4f7f\u7528 refresh_token<\/code> \u5237\u65b0 access_token<\/code><\/li>\n<\/ul>\n\n\n\n
        2. \u751f\u6210 refresh_token<\/code> \u5e76\u5b58\u6570\u636e\u5e93<\/strong><\/p>\n\n\n\n
        \u65e7\u4ee3\u7801<\/strong> \u6ca1\u6709 refresh_token<\/code>\uff1a<\/p>\n\n\n\n
        token_payload = {\n    \"user_id\": user[0],\n    \"username\": username,\n    \"exp\": datetime.datetime.utcnow() + datetime.timedelta(hours=1)\n}\ntoken = jwt.encode(token_payload, app.config[\"SECRET_KEY\"], algorithm=\"HS256\")\nreturn jsonify({\"access_token\": token})\n<\/pre>\n\n\n\n
        \u65b0\u4ee3\u7801<\/strong> \u589e\u52a0 refresh_token<\/strong> \u903b\u8f91\uff1a<\/p>\n\n\n\n
        refresh_token = secrets.token_hex(32)  # \u751f\u6210\u968f\u673a\u5b57\u7b26\u4e32\nexpiry_time = datetime.datetime.utcnow() + datetime.timedelta(days=7)\ncursor.execute(\"INSERT INTO refresh_tokens (user_id, token, expiry, revoked) VALUES (%s, %s, %s, %s)\", \n               (user_id, refresh_token, expiry_time, False))\ndb.commit()\n\nreturn jsonify({\"access_token\": access_token, \"refresh_token\": refresh_token})\n<\/pre>\n\n\n\n
        3. access_token<\/code> \u7cbe\u7b80\uff0c\u4ec5\u5b58 user_id<\/code><\/strong><\/h3>\n\n\n\n
        \u65e7\u4ee3\u7801<\/strong> \u989d\u5916\u5b58\u50a8 \"username\"<\/code>\uff1a<\/p>\n\n\n\n
        token_payload = {\n    \"user_id\": user[0],\n    \"username\": username,\n    \"exp\": datetime.datetime.utcnow() + datetime.timedelta(hours=1)\n}\n<\/pre>\n\n\n\n
        \u65b0\u4ee3\u7801<\/strong> \u53ea\u5b58 user_id<\/code>\uff0c\u51cf\u5c11 JWT \u4f53\u79ef\uff1a<\/p>\n\n\n\n
        token_payload = {\n    \"user_id\": user_id,\n    \"exp\": datetime.datetime.utcnow() + datetime.timedelta(hours=1)\n}\n<\/pre>\n\n\n\n
        4. \u5904\u7406 refresh_token<\/code> \u903b\u8f91<\/strong><\/p>\n\n\n\n
        \u65e7\u4ee3\u7801<\/strong> \u6ca1\u6709 refresh_token<\/code>\uff0c\u65e0\u6cd5\u7eed\u671f access_token
        \u65b0\u4ee3\u7801<\/strong> \u5904\u7406 grant_type=\"refresh_token\"<\/code>\uff1a<\/p>\n\n\n\n
        elif grant_type == \"refresh_token\":\n    refresh_token = data.get(\"refresh_token\")\n\n    cursor.execute(\"SELECT user_id, expiry, revoked FROM refresh_tokens WHERE token = %s\", (refresh_token,))\n    token_record = cursor.fetchone()\n\n    if not token_record:\n        return jsonify({\"error\": \"Invalid refresh token\"}), 401\n    if token_record[2]:  # revoked\n        return jsonify({\"error\": \"Refresh token has been revoked\"}), 401\n    if datetime.datetime.utcnow() > token_record[1]:  # expired\n        return jsonify({\"error\": \"Refresh token has expired\"}), 401\n\n    new_access_token = generate_access_token(token_record[0])\n    return jsonify({\"access_token\": new_access_token})\n<\/pre>\n\n\n\n
        5. \u65e7\u6570\u636e\u5e93\u7ed3\u6784\u8c03\u6574<\/strong><\/p>\n\n\n\n
        \u65e7 users<\/code> \u8868<\/strong><\/h4>\n\n\n\n
        CREATE TABLE users (\n    id INT AUTO_INCREMENT PRIMARY KEY,\n    username VARCHAR(255) UNIQUE NOT NULL,\n    password_hash VARCHAR(255) NOT NULL\n);\n<\/pre>\n\n\n\n
        \u65b0 refresh_tokens<\/code> \u8868<\/strong><\/h4>\n\n\n\n
        CREATE TABLE refresh_tokens (\n    id INT AUTO_INCREMENT PRIMARY KEY,\n    user_id INT NOT NULL,\n    token VARCHAR(64) UNIQUE NOT NULL,\n    expiry DATETIME NOT NULL,\n    revoked BOOLEAN DEFAULT FALSE,\n    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,\n    FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE\n);\n<\/pre>\n\n\n\n
        \u53d8\u66f4\u70b9<\/th>\u65e7\u4ee3\u7801<\/th>\u65b0\u4ee3\u7801<\/th><\/tr><\/thead>
        \u767b\u5f55\u63a5\u53e3<\/strong><\/td>\/login<\/code><\/td>\/token<\/code><\/td><\/tr>
        \u652f\u6301 refresh_token<\/code><\/strong><\/td>\u274c<\/td>\u2705<\/td><\/tr>
        \u6570\u636e\u5e93\u5b58\u50a8 refresh_token<\/code><\/strong><\/td>\u274c<\/td>\u2705<\/td><\/tr>
        JWT \u4f53\u79ef\u4f18\u5316<\/strong><\/td>\u274c \u5b58 username<\/code><\/td>\u2705 \u4ec5\u5b58 user_id<\/code><\/td><\/tr>
        \u7edf\u4e00 \/token<\/code> \u7aef\u53e3<\/strong><\/td>\u274c \u4ec5\u5904\u7406\u767b\u5f55<\/td>\u2705 \u5904\u7406\u767b\u5f55 & \u5237\u65b0 token<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
        3. \u540a\u9500 Refresh Token<\/strong><\/h3>\n\n\n\n
        \u63d0\u4f9b\u4e00\u4e2a API \u5141\u8bb8\u7528\u6237\u6216\u7ba1\u7406\u5458\u4e3b\u52a8\u540a\u9500 Refresh Token\uff0c\u9632\u6b62\u88ab\u6ee5\u7528\u3002<\/p>\n\n\n\n
        @app.route('\/revoke', methods=['POST'])\ndef revoke_token():\n    data = request.json\n    refresh_token = data.get(\"refresh_token\")\n\n    if not refresh_token:\n        return jsonify({\"error\": \"Refresh token is required\"}), 400\n\n    cursor.execute(\"UPDATE refresh_tokens SET revoked = TRUE WHERE token = %s\", (refresh_token,))\n    db.commit()\n\n    return jsonify({\"message\": \"Refresh token has been revoked\"})<\/pre>\n\n\n\n
        \n\n\n\n
        \u63a5\u53e3\u6d4b\u8bd5<\/strong><\/h2>\n\n\n\n
        \u7528\u6237\u6ce8\u518c<\/strong>\uff1a<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u7528\u6237\u767b\u5f55 – \u5bc6\u7801<\/strong>\uff08grant_type=password<\/code>\uff09\uff1a<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u7528\u6237\u767b\u5f55 – \u5237\u65b0\u4ee4\u724c<\/strong>\uff08grant_type=refresh_token<\/code>\uff09\uff1a<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        MySQL \u8868\u4e2d\u7684 Refresh Token \u72b6\u6001\uff1a<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u4f20\u9012\u5df2\u8fc7\u671f Refresh Token \u65f6\uff0c\u63a5\u53e3\u8fd4\u56de\u7ed3\u679c\uff1a<\/strong><\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u2753 FAQ-1. Refresh Token \u6ca1\u7ed1\u5b9a\u7528\u6237\u662f\u5426\u5b89\u5168\uff1f\u884c\u4e1a\u5185\u6807\u51c6\u662f\u600e\u6837\u7684\uff1f<\/strong>

        \u95ee\u9898\u8bf4\u660e\uff1a<\/strong>
        \u5f53\u524d\u4ee3\u7801\u4e2d\uff0crefresh_token \u662f\u901a\u8fc7\u6570\u636e\u5e93\u4e0e user_id \u5173\u8054\u7684\uff0c\u4f46\u5f53\u5ba2\u6237\u7aef\u4f20\u6765\u4e00\u4e2a\u5408\u6cd5\u7684 refresh_token \u65f6\uff0c\u5e76\u6ca1\u6709\u8fdb\u884c\u989d\u5916\u7684\u7528\u6237\u8eab\u4efd\u9a8c\u8bc1\u3002\u6362\u53e5\u8bdd\u8bf4\uff0c\u53ea\u8981\u62ff\u5230 refresh_token\uff0c\u5c31\u53ef\u4ee5\u6362\u53d6\u65b0\u7684 access_token\uff0c\u65e0\u89c6\u662f\u8c01\u7684\u8bf7\u6c42\u3002

        \u98ce\u9669\u70b9\uff1a<\/strong>
        \u2022 \u5982\u679c refresh token \u6cc4\u9732\uff0c\u4ed6\u4eba\u53ef\u4ee5\u5728\u4e0d\u77e5\u60c5\u7684\u60c5\u51b5\u4e0b\u6362\u53d6\u7528\u6237\u7684 access token\u3002
        \u2022 \u6ca1\u6709\u7ed1\u5b9a\u5ba2\u6237\u7aef\u3001IP\u3001UA \u7b49\u989d\u5916\u4e0a\u4e0b\u6587\uff0c\u65e0\u6cd5\u9632\u6b62 token \u88ab\u8de8\u73af\u5883\u4f7f\u7528\u3002

        \u884c\u4e1a\u6807\u51c6\uff1a<\/strong>
        \u2022 OAuth2 \u6807\u51c6\u5e76\u4e0d\u5f3a\u5236\u8981\u6c42 refresh_token \u9a8c\u8bc1\u7528\u6237\u8eab\u4efd<\/strong>\uff0c\u4f46\u63a8\u8350\u4e0e\u5ba2\u6237\u7aef\u6216\u4e0a\u4e0b\u6587\u7ed1\u5b9a<\/strong>\uff0c\u4ee5\u63d0\u9ad8\u5b89\u5168\u6027\u3002
        \u2022 OpenID Connect<\/strong> \u7684\u5b9e\u73b0\u4e2d\uff0c\u901a\u5e38 refresh token \u4e0e client_id\u3001user_id \u7ed1\u5b9a\uff0c\u5e76\u53ef\u914d\u7f6e\u662f\u5426\u5141\u8bb8\u8de8\u5ba2\u6237\u7aef\u4f7f\u7528\u3002<\/p>\n\n\n\n
        \u2753 FAQ-2. \u4e3a\u4ec0\u4e48 user_id \u5e94\u8be5\u4f7f\u7528 GUID \u800c\u4e0d\u662f\u81ea\u589e ID\uff1f<\/strong>

        \u95ee\u9898\u8bf4\u660e\uff1a<\/strong>
        \u5f53\u524d users \u8868\u7684\u4e3b\u952e id \u4e3a\u81ea\u589e\u6574\u6570\uff0crefresh_tokens \u8868\u4e2d\u7684 user_id \u5916\u952e\u6307\u5411\u5b83\u3002\u6211\u8ba1\u5212\u5c06\u4e3b\u952e\u6539\u6210 user_id\uff08UUID \/ GUID\uff09\uff0c\u4ee5\u63d0\u5347\u53ef\u8bfb\u6027\u548c\u4e00\u81f4\u6027\u3002

        \u81ea\u589e ID \u7684\u7f3a\u70b9\uff1a<\/strong>
        \u2022 \u53ef\u9884\u6d4b\uff1a\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u904d\u5386\u731c\u6d4b id=1,2,3\u2026 \u8bbf\u95ee\u5176\u4ed6\u7528\u6237\u7684\u6570\u636e\u3002
        \u2022 \u6570\u636e\u8fc1\u79fb\u96be\uff1a\u5728\u591a\u8282\u70b9\u6570\u636e\u5e93\u4e2d\u4f1a\u53d1\u751f\u81ea\u589e\u51b2\u7a81\u3002
        \u2022 \u5b89\u5168\u6027\u8f83\u4f4e\uff1a\u4e0d\u9002\u5408\u66b4\u9732\u5728 URL \u6216\u5916\u90e8 API \u4e2d\u3002

        GUID \u7684\u4f18\u52bf\uff1a<\/strong>
        \u2022 \u5168\u5c40\u552f\u4e00\uff0c\u9002\u5408\u5206\u5e03\u5f0f\u7cfb\u7edf\u3002
        \u2022 \u66f4\u96be\u88ab\u731c\u6d4b\uff0c\u589e\u5f3a\u5b89\u5168\u6027\u3002
        \u2022 \u66f4\u5229\u4e8e\u672a\u6765\u6269\u5c55\u5230 RBAC\u3001IAM \u7ed3\u6784\u65f6\u7684\u8de8\u8868\u8054\u5408\u3002<\/p>\n\n\n\n
        \u540a\u9500\u5237\u65b0\u4ee4\u724c\uff1a<\/strong><\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        MySQL \u8868\u4e2d\u7684 Refresh Token \u72b6\u6001\uff1a<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u6b64\u65f6\u5982\u679c\u5c1d\u8bd5\u4f7f\u7528 Refresh Token \u5151\u6362 Access Token \u4f1a\u62a5\u9519\u63d0\u793a\u5237\u65b0\u4ee4\u724c\u5df2\u88ab\u540a\u9500<\/p>\n\n\n\n
        \"\"<\/figure>\n\n\n\n
        \u2753 FAQ-3. Refresh Token \u7684\u8fc7\u671f\u4e0e\u540a\u9500\uff0c\u524d\u7aef\u9700\u8981\u77e5\u9053\u533a\u522b\u5417\uff1f<\/strong>

        \u95ee\u9898\u8bf4\u660e\uff1a<\/strong>
        \u5f53\u524d refresh token \u53ef\u4e3a \u201c\u5df2\u8fc7\u671f\u201d \u6216 \u201c\u88ab\u540a\u9500\u201d \u4e24\u79cd\u72b6\u6001\u3002\u63a5\u53e3\u8fd4\u56de\u63d0\u793a\u4e2d\u5230\u5e95\u9700\u4e0d\u9700\u8981\u533a\u5206\u8fd9\u4e24\u79cd\u72b6\u6001\u3002

        \u7ed3\u8bba\uff1a<\/strong>
        \u5bf9\u4e8e\u5ba2\u6237\u7aef\u6765\u8bf4\uff0c\u8fd9\u4e24\u79cd\u72b6\u6001\u672c\u8d28\u4e0a\u90fd\u662f \u201ctoken \u65e0\u6548\u201d<\/strong>\uff0c\u8fd4\u56de\u4e00\u4e2a\u7edf\u4e00\u7684\u9519\u8bef\u63d0\u793a\u5c31\u8db3\u591f\u4e86\u3002<\/p>\n\n\n\n
        \n\n\n\n
        \u603b\u7ed3<\/strong><\/h2>\n\n\n\n
        \u5728\u672c\u90e8\u5206\u4e2d\uff0c\u6211\u4eec\uff1a<\/p>\n\n\n\n
          \n
        • \u5f15\u5165 Refresh Token \u673a\u5236<\/strong>\uff0c\u51cf\u5c11\u7528\u6237\u9891\u7e41\u767b\u5f55\u3002<\/li>\n\n\n\n
        • \u5b58\u50a8 Refresh Token<\/strong>\uff0c\u652f\u6301\u591a\u8bbe\u5907\u7ba1\u7406\u3002<\/li>\n\n\n\n
        • \u5b9e\u73b0 Refresh Token \u540a\u9500<\/strong>\uff0c\u63d0\u9ad8\u5b89\u5168\u6027\u3002<\/li>\n<\/ul>\n\n\n\n
          \u9700\u8981\u6ce8\u610f\u7684\u662f\uff0cRefresh Token \u5e76\u4e0d\u80fd\u76f4\u63a5\u89e3\u51b3 Token \u64a4\u9500\u548c\u5b8c\u6574\u7684\u4f1a\u8bdd\u7ba1\u7406\u95ee\u9898<\/strong>\uff0c\u8fd9\u4e9b\u4ecd\u7136\u9700\u8981\u5e94\u7528\u81ea\u8eab\u7684\u903b\u8f91\u6765\u914d\u5408\u5b9e\u73b0\u3002<\/p>\n\n\n\n
          <\/p>\n","protected":false},"excerpt":{"rendered":"
          \u5f15\u8a00 \u5728 \u7b2c\u4e00\u90e8\u5206 \u4e2d\uff0c\u6211\u4eec\u6210\u529f\u5b9e\u73b0\u4e86 SSO \u670d\u52a1\u5668\u7684\u57fa\u672c\u767b\u5f55\u548c\u8ba4\u8bc1\u529f\u80fd\uff0c\u5141\u8bb8\u7528\u6237\u901a\u8fc7\u7528\u6237\u540d\u548c\u5bc6\u7801\u83b7\u53d6 Access Token\uff0c\u5e76\u4f7f\u7528\u8be5 Token \u8bbf\u95ee\u53d7\u4fdd\u62a4\u7684\u8d44\u6e90\u3002\u7136\u800c\uff0c\u76ee\u524d\u7684 Access Token \u6709\u6548\u671f\u4ec5\u4e3a 1 \u5c0f\u65f6\uff0c\u4e00\u65e6\u8fc7\u671f\uff0c\u7528\u6237\u5fc5\u987b\u91cd\u65b0\u767b\u5f55\u3002 \u4e3a\u4e86\u63d0\u5347\u7528\u6237\u4f53\u9a8c\u548c\u5b89\u5168\u6027\uff0c\u6211\u4eec\u5c06\u5728\u672c\u90e8\u5206\u5b9e\u73b0 Refresh Token \u673a\u5236\uff0c\u5141\u8bb8\u7528\u6237\u5728 Access Token \u8fc7\u671f\u540e\uff0c\u65e0\u9700\u91cd\u65b0\u8f93\u5165\u7528\u6237\u540d\u548c\u5bc6\u7801\u5373\u53ef\u83b7\u53d6\u65b0\u7684 Token\u3002\u540c\u65f6\uff0c\u6211\u4eec\u8fd8\u5c06\u652f\u6301 Refresh Token \u7684\u540a\u9500\uff08Revoke\uff09\uff0c\u786e\u4fdd\u7528\u6237\u53ef\u4ee5\u5b89\u5168\u5730\u767b\u51fa\u6216\u7ba1\u7406\u5458\u53ef\u4ee5\u624b\u52a8\u7981\u7528\u67d0\u4e9b\u4f1a\u8bdd\u3002 \u73b0\u6709 Token \u673a\u5236\u7684\u95ee\u9898 \u76ee\u524d\uff0cAccess Token \u6709\u6548\u671f\u8bbe\u7f6e\u4e3a 1 \u5c0f\u65f6\uff0c\u4f46\u5b58\u5728\u4ee5\u4e0b\u95ee\u9898\uff1a \u4e3a\u4e86\u89e3\u51b3\u8fd9\u4e9b\u95ee\u9898\uff0c\u6211\u4eec\u5f15\u5165 Refresh Token \u673a\u5236\uff0c\u5b83\u4e3b\u8981\u89e3\u51b3\u4e86 \u7b2c 1 \u4e2a\u95ee\u9898\u2014\u2014\u51cf\u5c11\u7528\u6237\u9891\u7e41\u767b\u5f55\u7684\u9700\u6c42\u3002\u5bf9\u4e8e Token \u64a4\u9500\uff08\u7b2c 2 \u70b9\uff09\uff0c\u4ec5\u4ec5\u5f15\u5165 Refresh Token \u5e76\u4e0d\u80fd\u76f4\u63a5\u89e3\u51b3\uff0c\u4ecd\u7136\u9700\u8981\u914d\u5408\u5e94\u7528\u81ea\u8eab\u7684\u903b\u8f91\u6765\u7ba1\u7406 Token \u7684\u751f\u6548\u72b6\u6001\u3002\u4f1a\u8bdd\u7ba1\u7406\uff08\u7b2c 3 \u70b9\uff09 \u4e5f\u662f\u4e00\u4e2a\u66f4\u5e7f\u6cdb\u7684\u95ee\u9898\uff0cRefresh Token \u53ea\u662f\u4f1a\u8bdd\u7ba1\u7406\u7684\u4e00\u90e8\u5206\uff0c\u5b8c\u6574\u7684\u4f1a\u8bdd\u7ba1\u7406\u901a\u5e38\u6d89\u53ca\u66f4\u591a\u673a\u5236\uff0c\u5982\u8bbe\u5907\u7ba1\u7406\u3001\u591a\u91cd\u8eab\u4efd\u9a8c\u8bc1\u7b49\u3002 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1,10],"tags":[],"class_list":["post-2750","post","type-post","status-publish","format-standard","hentry","category-miscellaneous","category-tutorial"],"yoast_head":"\n\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ruianding.com\/blog\/\u642d\u5efa\u81ea\u5df1\u7684-sso-\u670d\u52a1\u5668-part-2-\u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08refresh-token\uff09\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT\" \/>\n<meta property=\"og:description\" content=\"\u5f15\u8a00 \u5728 \u7b2c\u4e00\u90e8\u5206 \u4e2d\uff0c\u6211\u4eec\u6210\u529f\u5b9e\u73b0\u4e86 SSO \u670d\u52a1\u5668\u7684\u57fa\u672c\u767b\u5f55\u548c\u8ba4\u8bc1\u529f\u80fd\uff0c\u5141\u8bb8\u7528\u6237\u901a\u8fc7\u7528\u6237\u540d\u548c\u5bc6\u7801\u83b7\u53d6 Access Token\uff0c\u5e76\u4f7f\u7528\u8be5 Token \u8bbf\u95ee\u53d7\u4fdd\u62a4\u7684\u8d44\u6e90\u3002\u7136\u800c\uff0c\u76ee\u524d\u7684 Access Token \u6709\u6548\u671f\u4ec5\u4e3a 1 \u5c0f\u65f6\uff0c\u4e00\u65e6\u8fc7\u671f\uff0c\u7528\u6237\u5fc5\u987b\u91cd\u65b0\u767b\u5f55\u3002 \u4e3a\u4e86\u63d0\u5347\u7528\u6237\u4f53\u9a8c\u548c\u5b89\u5168\u6027\uff0c\u6211\u4eec\u5c06\u5728\u672c\u90e8\u5206\u5b9e\u73b0 Refresh Token \u673a\u5236\uff0c\u5141\u8bb8\u7528\u6237\u5728 Access Token \u8fc7\u671f\u540e\uff0c\u65e0\u9700\u91cd\u65b0\u8f93\u5165\u7528\u6237\u540d\u548c\u5bc6\u7801\u5373\u53ef\u83b7\u53d6\u65b0\u7684 Token\u3002\u540c\u65f6\uff0c\u6211\u4eec\u8fd8\u5c06\u652f\u6301 Refresh Token \u7684\u540a\u9500\uff08Revoke\uff09\uff0c\u786e\u4fdd\u7528\u6237\u53ef\u4ee5\u5b89\u5168\u5730\u767b\u51fa\u6216\u7ba1\u7406\u5458\u53ef\u4ee5\u624b\u52a8\u7981\u7528\u67d0\u4e9b\u4f1a\u8bdd\u3002 \u73b0\u6709 Token \u673a\u5236\u7684\u95ee\u9898 \u76ee\u524d\uff0cAccess Token \u6709\u6548\u671f\u8bbe\u7f6e\u4e3a 1 \u5c0f\u65f6\uff0c\u4f46\u5b58\u5728\u4ee5\u4e0b\u95ee\u9898\uff1a \u4e3a\u4e86\u89e3\u51b3\u8fd9\u4e9b\u95ee\u9898\uff0c\u6211\u4eec\u5f15\u5165 Refresh Token \u673a\u5236\uff0c\u5b83\u4e3b\u8981\u89e3\u51b3\u4e86 \u7b2c 1 \u4e2a\u95ee\u9898\u2014\u2014\u51cf\u5c11\u7528\u6237\u9891\u7e41\u767b\u5f55\u7684\u9700\u6c42\u3002\u5bf9\u4e8e Token \u64a4\u9500\uff08\u7b2c 2 \u70b9\uff09\uff0c\u4ec5\u4ec5\u5f15\u5165 Refresh Token \u5e76\u4e0d\u80fd\u76f4\u63a5\u89e3\u51b3\uff0c\u4ecd\u7136\u9700\u8981\u914d\u5408\u5e94\u7528\u81ea\u8eab\u7684\u903b\u8f91\u6765\u7ba1\u7406 Token \u7684\u751f\u6548\u72b6\u6001\u3002\u4f1a\u8bdd\u7ba1\u7406\uff08\u7b2c 3 \u70b9\uff09 \u4e5f\u662f\u4e00\u4e2a\u66f4\u5e7f\u6cdb\u7684\u95ee\u9898\uff0cRefresh Token \u53ea\u662f\u4f1a\u8bdd\u7ba1\u7406\u7684\u4e00\u90e8\u5206\uff0c\u5b8c\u6574\u7684\u4f1a\u8bdd\u7ba1\u7406\u901a\u5e38\u6d89\u53ca\u66f4\u591a\u673a\u5236\uff0c\u5982\u8bbe\u5907\u7ba1\u7406\u3001\u591a\u91cd\u8eab\u4efd\u9a8c\u8bc1\u7b49\u3002 […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ruianding.com\/blog\/\u642d\u5efa\u81ea\u5df1\u7684-sso-\u670d\u52a1\u5668-part-2-\u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08refresh-token\uff09\/\" \/>\n<meta property=\"og:site_name\" content=\"\u6781\u7b80IT\uff5cSimpleIT\" \/>\n<meta property=\"article:published_time\" content=\"2025-04-01T10:06:08+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-02-07T07:10:29+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1844\" \/>\n\t<meta property=\"og:image:height\" content=\"624\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Ruian Ding\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ruian Ding\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/\"},\"author\":{\"name\":\"Ruian Ding\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"headline\":\"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09\",\"datePublished\":\"2025-04-01T10:06:08+00:00\",\"dateModified\":\"2026-02-07T07:10:29+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/\"},\"wordCount\":174,\"publisher\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"image\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image-1024x347.png\",\"articleSection\":[\"Miscellaneous\",\"Tutorial\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/\",\"url\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/\",\"name\":\"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT\",\"isPartOf\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image-1024x347.png\",\"datePublished\":\"2025-04-01T10:06:08+00:00\",\"dateModified\":\"2026-02-07T07:10:29+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage\",\"url\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png\",\"contentUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png\",\"width\":1844,\"height\":624},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.ruianding.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#website\",\"url\":\"https:\/\/www.ruianding.com\/blog\/\",\"name\":\"Ruian's Tech Troubleshooting Toolbox\",\"description\":\"Debug the World.\",\"publisher\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\"},\"alternateName\":\"\u4e01\u777f\u5b89\u7684\u6280\u672f\u5206\u4eab\u535a\u5ba2\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.ruianding.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b\",\"name\":\"Ruian Ding\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png\",\"contentUrl\":\"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png\",\"width\":284,\"height\":284,\"caption\":\"Ruian Ding\"},\"logo\":{\"@id\":\"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/\"},\"description\":\"I am currently a Support Specialist at NIO, focusing on cloud-related issues for NIO Power. Previously, at Microsoft Entra ID, I specialized in identity and access management (IAM), including device registration, Windows Hello for Business (WHfB), multi-factor authentication (MFA), and single sign-on (SSO). In addition to my core expertise, I have a strong foundation in Active Directory, Servers, Cloud Computing, Network Administration, and Front-end Web Development. This diverse technical skill set enables me to effectively handle a wide range of challenges in a fast-paced IT environment.\",\"sameAs\":[\"https:\/\/www.ruianding.com\"],\"url\":\"https:\/\/www.ruianding.com\/blog\/author\/ruiand\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ruianding.com\/blog\/\u642d\u5efa\u81ea\u5df1\u7684-sso-\u670d\u52a1\u5668-part-2-\u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08refresh-token\uff09\/","og_locale":"en_US","og_type":"article","og_title":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT","og_description":"\u5f15\u8a00 \u5728 \u7b2c\u4e00\u90e8\u5206 \u4e2d\uff0c\u6211\u4eec\u6210\u529f\u5b9e\u73b0\u4e86 SSO \u670d\u52a1\u5668\u7684\u57fa\u672c\u767b\u5f55\u548c\u8ba4\u8bc1\u529f\u80fd\uff0c\u5141\u8bb8\u7528\u6237\u901a\u8fc7\u7528\u6237\u540d\u548c\u5bc6\u7801\u83b7\u53d6 Access Token\uff0c\u5e76\u4f7f\u7528\u8be5 Token \u8bbf\u95ee\u53d7\u4fdd\u62a4\u7684\u8d44\u6e90\u3002\u7136\u800c\uff0c\u76ee\u524d\u7684 Access Token \u6709\u6548\u671f\u4ec5\u4e3a 1 \u5c0f\u65f6\uff0c\u4e00\u65e6\u8fc7\u671f\uff0c\u7528\u6237\u5fc5\u987b\u91cd\u65b0\u767b\u5f55\u3002 \u4e3a\u4e86\u63d0\u5347\u7528\u6237\u4f53\u9a8c\u548c\u5b89\u5168\u6027\uff0c\u6211\u4eec\u5c06\u5728\u672c\u90e8\u5206\u5b9e\u73b0 Refresh Token \u673a\u5236\uff0c\u5141\u8bb8\u7528\u6237\u5728 Access Token \u8fc7\u671f\u540e\uff0c\u65e0\u9700\u91cd\u65b0\u8f93\u5165\u7528\u6237\u540d\u548c\u5bc6\u7801\u5373\u53ef\u83b7\u53d6\u65b0\u7684 Token\u3002\u540c\u65f6\uff0c\u6211\u4eec\u8fd8\u5c06\u652f\u6301 Refresh Token \u7684\u540a\u9500\uff08Revoke\uff09\uff0c\u786e\u4fdd\u7528\u6237\u53ef\u4ee5\u5b89\u5168\u5730\u767b\u51fa\u6216\u7ba1\u7406\u5458\u53ef\u4ee5\u624b\u52a8\u7981\u7528\u67d0\u4e9b\u4f1a\u8bdd\u3002 \u73b0\u6709 Token \u673a\u5236\u7684\u95ee\u9898 \u76ee\u524d\uff0cAccess Token \u6709\u6548\u671f\u8bbe\u7f6e\u4e3a 1 \u5c0f\u65f6\uff0c\u4f46\u5b58\u5728\u4ee5\u4e0b\u95ee\u9898\uff1a \u4e3a\u4e86\u89e3\u51b3\u8fd9\u4e9b\u95ee\u9898\uff0c\u6211\u4eec\u5f15\u5165 Refresh Token \u673a\u5236\uff0c\u5b83\u4e3b\u8981\u89e3\u51b3\u4e86 \u7b2c 1 \u4e2a\u95ee\u9898\u2014\u2014\u51cf\u5c11\u7528\u6237\u9891\u7e41\u767b\u5f55\u7684\u9700\u6c42\u3002\u5bf9\u4e8e Token \u64a4\u9500\uff08\u7b2c 2 \u70b9\uff09\uff0c\u4ec5\u4ec5\u5f15\u5165 Refresh Token \u5e76\u4e0d\u80fd\u76f4\u63a5\u89e3\u51b3\uff0c\u4ecd\u7136\u9700\u8981\u914d\u5408\u5e94\u7528\u81ea\u8eab\u7684\u903b\u8f91\u6765\u7ba1\u7406 Token \u7684\u751f\u6548\u72b6\u6001\u3002\u4f1a\u8bdd\u7ba1\u7406\uff08\u7b2c 3 \u70b9\uff09 \u4e5f\u662f\u4e00\u4e2a\u66f4\u5e7f\u6cdb\u7684\u95ee\u9898\uff0cRefresh Token \u53ea\u662f\u4f1a\u8bdd\u7ba1\u7406\u7684\u4e00\u90e8\u5206\uff0c\u5b8c\u6574\u7684\u4f1a\u8bdd\u7ba1\u7406\u901a\u5e38\u6d89\u53ca\u66f4\u591a\u673a\u5236\uff0c\u5982\u8bbe\u5907\u7ba1\u7406\u3001\u591a\u91cd\u8eab\u4efd\u9a8c\u8bc1\u7b49\u3002 […]","og_url":"https:\/\/www.ruianding.com\/blog\/\u642d\u5efa\u81ea\u5df1\u7684-sso-\u670d\u52a1\u5668-part-2-\u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08refresh-token\uff09\/","og_site_name":"\u6781\u7b80IT\uff5cSimpleIT","article_published_time":"2025-04-01T10:06:08+00:00","article_modified_time":"2026-02-07T07:10:29+00:00","og_image":[{"width":1844,"height":624,"url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png","type":"image\/png"}],"author":"Ruian Ding","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Ruian Ding","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#article","isPartOf":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/"},"author":{"name":"Ruian Ding","@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"headline":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09","datePublished":"2025-04-01T10:06:08+00:00","dateModified":"2026-02-07T07:10:29+00:00","mainEntityOfPage":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/"},"wordCount":174,"publisher":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"image":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage"},"thumbnailUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image-1024x347.png","articleSection":["Miscellaneous","Tutorial"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/","url":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/","name":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09 - \u6781\u7b80IT\uff5cSimpleIT","isPartOf":{"@id":"https:\/\/www.ruianding.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage"},"image":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage"},"thumbnailUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image-1024x347.png","datePublished":"2025-04-01T10:06:08+00:00","dateModified":"2026-02-07T07:10:29+00:00","breadcrumb":{"@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#primaryimage","url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png","contentUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2025\/04\/image.png","width":1844,"height":624},{"@type":"BreadcrumbList","@id":"https:\/\/www.ruianding.com\/blog\/%e6%90%ad%e5%bb%ba%e8%87%aa%e5%b7%b1%e7%9a%84-sso-%e6%9c%8d%e5%8a%a1%e5%99%a8-part-2-%e5%ae%9e%e7%8e%b0%e9%95%bf%e6%9c%9f%e7%99%bb%e5%bd%95%ef%bc%88refresh-token%ef%bc%89\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.ruianding.com\/blog\/"},{"@type":"ListItem","position":2,"name":"\u642d\u5efa\u81ea\u5df1\u7684 SSO \u670d\u52a1\u5668 \u2013 Part 2: \u5b9e\u73b0\u957f\u671f\u767b\u5f55\uff08Refresh Token\uff09"}]},{"@type":"WebSite","@id":"https:\/\/www.ruianding.com\/blog\/#website","url":"https:\/\/www.ruianding.com\/blog\/","name":"Ruian's Tech Troubleshooting Toolbox","description":"Debug the World.","publisher":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b"},"alternateName":"\u4e01\u777f\u5b89\u7684\u6280\u672f\u5206\u4eab\u535a\u5ba2","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.ruianding.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/440d88575b7dc819a4cefc8c4199db3b","name":"Ruian Ding","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png","contentUrl":"https:\/\/www.ruianding.com\/blog\/wp-content\/uploads\/2023\/05\/logo.png","width":284,"height":284,"caption":"Ruian Ding"},"logo":{"@id":"https:\/\/www.ruianding.com\/blog\/#\/schema\/person\/image\/"},"description":"I am currently a Support Specialist at NIO, focusing on cloud-related issues for NIO Power. Previously, at Microsoft Entra ID, I specialized in identity and access management (IAM), including device registration, Windows Hello for Business (WHfB), multi-factor authentication (MFA), and single sign-on (SSO). In addition to my core expertise, I have a strong foundation in Active Directory, Servers, Cloud Computing, Network Administration, and Front-end Web Development. This diverse technical skill set enables me to effectively handle a wide range of challenges in a fast-paced IT environment.","sameAs":["https:\/\/www.ruianding.com"],"url":"https:\/\/www.ruianding.com\/blog\/author\/ruiand\/"}]}},"_links":{"self":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/2750","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/comments?post=2750"}],"version-history":[{"count":5,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/2750\/revisions"}],"predecessor-version":[{"id":2769,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/posts\/2750\/revisions\/2769"}],"wp:attachment":[{"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/media?parent=2750"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/categories?post=2750"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ruianding.com\/blog\/wp-json\/wp\/v2\/tags?post=2750"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}