Headers
OAuth client secret key.
Path Parameters
Body
application/json
Managed user's refresh token.
Getting Started
Platform / Managed Users
Platform / Webhooks
Orgs / Attributes
Orgs / Attributes / Options
- GETGet all attribute options
- POSTCreate an attribute option
- DELDelete an attribute option
- PATCHUpdate an attribute option
- GETGet all assigned attribute options by attribute ID
- GETGet all assigned attribute options by attribute slug
- GETGet all attribute options for a user
- POSTAssign an attribute to a user
- DELUnassign an attribute from a user
Orgs / Bookings
Orgs / Delegation Credentials
Orgs / Memberships
Orgs / Routing forms
Orgs / Schedules
Orgs / Teams
Orgs / Teams / Bookings
Orgs / Teams / Conferencing
- POSTConnect your conferencing application to a team
- GETGet OAuth conferencing app's auth URL for a team
- GETList team conferencing applications
- POSTSet team default conferencing application
- GETGet team default conferencing application
- DELDisconnect team conferencing application
- GETSave conferencing app OAuth credentials
Orgs / Teams / Event Types
Orgs / Teams / Event Types / Private Links
Orgs / Teams / Invite
Orgs / Teams / Memberships
Orgs / Teams / Routing forms
Orgs / Teams / Routing forms / Responses
Orgs / Teams / Schedules
Orgs / Teams / Stripe
Orgs / Teams / Users / Schedules
Orgs / Teams / Workflows
- GETGet organization team workflows
- POSTCreate organization team workflow for event-types
- GETGet organization team workflows
- POSTCreate organization team workflow for routing-forms
- GETGet organization team workflow
- DELDelete organization team workflow
- PATCHUpdate organization team workflow
- GETGet organization team workflow
- DELDelete organization team routing-form workflow
- PATCHUpdate organization routing form team workflow
Orgs / Users / Bookings
Orgs / Users / OOO
Orgs / Users / Schedules
Orgs / Webhooks
Api Keys
Bookings
- GETGet all bookings
- POSTCreate a booking
- GETGet a booking
- GETGet all the recordings for the booking
- GETGet all the transcripts download links for the booking
- POSTReschedule a booking
- POSTCancel a booking
- POSTMark a booking absence
- POSTReassign a booking to auto-selected host
- POSTReassign a booking to a specific host
- POSTConfirm a booking
- POSTDecline a booking
- GETGet 'Add to Calendar' links for a booking
- GETGet booking references
Cal Unified Calendars
Calendars
Conferencing
Destination Calendars
Event Types
Event Types / Webhooks
Event Types Private Links
Managed Orgs
OAuth Clients
Organization Team Verified Resources
- POSTRequest email verification code
- POSTRequest phone number verification code
- POSTVerify an email for an org team
- POSTVerify a phone number for an org team
- GETGet list of verified emails of an org team
- GETGet list of verified phone numbers of an org team
- GETGet verified email of an org team by id
- GETGet verified phone number of an org team by id
Routing forms
Schedules
Selected Calendars
Slots
Teams / Event Types
Teams / Memberships
Teams / Schedules
Teams Verified Resources
- POSTRequest email verification code
- POSTRequest phone number verification code
- POSTVerify an email for a team
- POSTVerify a phone number for an org team
- GETGet list of verified emails of a team
- GETGet list of verified phone numbers of a team
- GETGet verified email of a team by id
- GETGet verified phone number of a team by id
Verified Resources
Refresh managed user tokens
Copy
Ask AI
curl --request POST \
--url https://api.cal.com/v2/oauth/{clientId}/refresh \
--header 'Content-Type: application/json' \
--header 'x-cal-secret-key: <x-cal-secret-key>' \
--data '{
"refreshToken": "<string>"
}'Copy
Ask AI
{
"status": "success",
"data": {
"accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
"refreshToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
"accessTokenExpiresAt": 123,
"refreshTokenExpiresAt": 123
}
}Platform / Managed Users
Refresh managed user tokens
If managed user access token is expired then get a new one using this endpoint - it will also refresh the refresh token, because we use
“refresh token rotation” mechanism. Access token is valid for 60 minutes and refresh token for 1 year. Make sure to store them in your database, for example, in your User database model calAccessToken and calRefreshToken fields.
Response also contains accessTokenExpiresAt and refreshTokenExpiresAt fields, but if you decode the jwt token the payload will contain clientId (OAuth client ID), ownerId (user to whom token belongs ID), iat (issued at time) and expiresAt (when does the token expire) fields.
POST
/
v2
/
oauth
/
{clientId}
/
refresh
Refresh managed user tokens
Copy
Ask AI
curl --request POST \
--url https://api.cal.com/v2/oauth/{clientId}/refresh \
--header 'Content-Type: application/json' \
--header 'x-cal-secret-key: <x-cal-secret-key>' \
--data '{
"refreshToken": "<string>"
}'Copy
Ask AI
{
"status": "success",
"data": {
"accessToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
"refreshToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9",
"accessTokenExpiresAt": 123,
"refreshTokenExpiresAt": 123
}
}Was this page helpful?
⌘I