Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join us at FabCon Atlanta from March 16 - 20, 2026, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM. Register now.

Reply
ArvindBhatt
Frequent Visitor

How to refresh access token with custom connector (OAuth2)?

‎01-16-2025 07:34 AM

I have created a custom connector that calls REST API, API requires access token that gets saved intially when user logins.
my question is how to refresh the access token
does powerBI Automatically refreshes the access token once it expires or we have to do it manually before calling the API.

I checked power bi does not automatically refreshes the token then i tried doing it before the api call but in M code there is no way i could find to save the new access token.

Message 1 of 11
2,936 Views
10 REPLIES 10
v-hashadapu
Community Support
Community Support

‎02-06-2025 06:47 AM

Hi @ArvindBhatt , Hope your issue is solved. If it is, please consider marking the answer 'Accept as solution', so others with similar issues may find it easily. If it isn't, please share the details.
Thank you.

Message 11 of 11
2,530 Views
0
v-hashadapu
Community Support
Community Support

‎02-03-2025 02:15 AM

Hi @ArvindBhatt , Hope your issue is solved. If it is, please consider marking the answer 'Accept as solution', so others with similar issues may find it easily. If it isn't, please share the details. Thank you.

Message 10 of 11
2,605 Views
0
v-hashadapu
Community Support
Community Support

‎01-31-2025 12:57 AM

Hi @ArvindBhatt , Hope your issue is solved. If it is, please consider marking it 'Accept as solution', so others with similar issues may find it easily. If it isn't, please share the details. Thank you.

Message 9 of 11
2,640 Views
0
ArvindBhatt
Frequent Visitor

‎01-16-2025 11:43 PM

Hi @v-hashadapu @rajendraongole1 
I tried generating new access token from the refresh token but issue with that is i am not able to save the new access token as Credentials so that i can use the new access token instead generating it everytime.
There is no method in power query which saves the new credentials.
Also one more question when the access token or refresh token gets expired it does not ask me for re-authentication. powerbi keeps on using old token.


shared GetValidToken = () =>
    let
        // Fetch the stored credentials from Power BI
        tokens = Extension.CurrentCredential(),
        accessToken = tokens[access_token],
        refreshToken = tokens[refresh_token],
        expiresAtText = tokens[expires],
        // expiration time (text format)
        // Convert expiration time from Text to DateTime
        expiresAt = DateTime.FromText(expiresAtText),
        // Get the current time
        currentTime = DateTime.LocalNow(),
        // Check if the token has expired
        isTokenExpired = expiresAt <= currentTime,

        // If expired, refresh the token
        newTokens =
            if isTokenExpired then
                let
                    // Call the refresh token method to get a new access token
                    refreshedTokens = TokenMethod("refresh_token", refreshToken),
                    // "dan" is placeholder for code_verifier
                    newAccessToken = refreshedTokens[access_token],
                    // New access token
                    newRefreshToken = refreshedTokens[refresh_token],
                    // New refresh token
                    newExpiresAt = refreshedTokens[expires]
                    // New expiration time
                    // Store the new tokens in Power BI credentials
                in
                    Extension.CurrentCredential(
                        [
                            access_token = newAccessToken,
                            refresh_token = newRefreshToken,
                            expires = newExpiresAt
                        ]
                    )
            else
                tokens,
        // Return the existing tokens if not expired
        // Return the valid access token
        validAccessToken = newTokens[access_token]
    in
        validAccessToken;

 

Message 4 of 11
2,852 Views
0
v-hashadapu
Community Support
Community Support
In response to ArvindBhatt

‎01-17-2025 01:13 AM

Hi @ArvindBhatt , thank you for reaching out to the Microsoft Fabric Community Forum.

@rajendraongole1 provided the correct answer. Please try it. If you still have any queries related to this issue or the answer doesn't work, please share the details.

If it does, please consider accepting his answer, so others with similar queries can find it easily.
Thank you.

Message 8 of 11
2,833 Views
0
rajendraongole1
Super User
Super User
In response to ArvindBhatt

‎01-17-2025 12:50 AM

Hi @ArvindBhatt  - You can store the refreshed tokens in a static variable (as shown in your GetValidToken function) during the session.

shared GetValidToken = () =>
let
tokens = Extension.CurrentCredential(),
accessToken = tokens[access_token],
refreshToken = tokens[refresh_token],
expiresAtText = tokens[expires],
expiresAt = DateTime.FromText(expiresAtText),
currentTime = DateTime.LocalNow(),
isTokenExpired = expiresAt <= currentTime,

refreshedTokens =
if isTokenExpired then
TokenMethod("refresh_token", refreshToken)
else
tokens,

validAccessToken = refreshedTokens[access_token]
in
validAccessToken;

 

When tokens expire, you can force reauthentication by returning an HTTP 401 error in your connector.

if isTokenExpired then
error Error.Record("TokenExpired", "Access token has expired. Please reauthenticate.")





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!



Message 5 of 11
2,839 Views
0
ArvindBhatt
Frequent Visitor
In response to rajendraongole1

‎01-17-2025 01:23 AM

Hi @rajendraongole1 
in above code when token is expired and we get new access token but we are not saving it anywhere as there is no function i think to save the credentials.
Extension.CurretCredentials() function will return old access token.


and about this

if isTokenExpired then
error Error.Record("TokenExpired", "Access token has expired. Please reauthenticate.")


how user will re-athenticate, will it got to data source setting clear the credential and then again reconnect the connector? 
or this is there any other way. (I'm new to the power bi things sorry if this is a basic question)

Message 6 of 11
2,827 Views
0
v-hashadapu
Community Support
Community Support
In response to ArvindBhatt

‎01-20-2025 09:32 PM

Hi @ArvindBhatt , thank you for reaching out to the Microsoft Fabric Community Forum.

  1. Continue using the GetValidToken function to check for token expiry and refresh it when necessary.
  2. Use a static variable within your Power Query function to store the new tokens. Static variables persist across the lifetime of the query session.


Try this:
shared GetValidToken = () =>

    let

        // Define a static variable to store tokens

        cachedTokens = if IsNull(cachedTokens) then null else cachedTokens,

       

        // Check if cached tokens exist and are valid

        tokens =

            if IsNull(cachedTokens) or DateTime.FromText(cachedTokens[expires]) <= DateTime.LocalNow() then

                let

                    // Fetch new tokens using the refresh token

                    refreshedTokens = TokenMethod("refresh_token", cachedTokens[refresh_token]),

 

                    // Update the cached tokens

                    newCachedTokens = [

                        access_token = refreshedTokens[access_token],

                        refresh_token = refreshedTokens[refresh_token],

                        expires = refreshedTokens[expires]

                    ],

                   

                    // Save the new tokens in the static variable

                    _ = (cachedTokens <- newCachedTokens),

                   

                    // Use the new tokens

                    tokensToUse = newCachedTokens

                in

                    tokensToUse

            else

                // Use the existing cached tokens if they are still valid

                cachedTokens,

 

        // Extract the access token from the tokens to be used

        validAccessToken = tokens[access_token]

    in

        validAccessToken;

When the token expires, you can return an HTTP 401 error to prompt the user for reauthentication.

if isTokenExpired then

    error Error.Record("TokenExpired", "Access token has expired. Please reauthenticate.")

In case of reauthentication, yes, the user will need to go to the Data Source Settings in Power BI, clear the old credentials, and reconnect the connector with new credentials.


If this helps, please consider marking it 'Accept as Solution' so others with similar queries may find it more easily. If not, please share the details.
Thank you.

Message 7 of 11
2,758 Views
0
v-hashadapu
Community Support
Community Support

‎01-16-2025 11:29 PM

Hi @ArvindBhatt , thank you for reaching out to the Microsoft Fabric Community Forum.


Yes as @rajendraongole1 said Power BI does not automatically refresh the access token once it expires. You will need to manually refresh the token before making API calls. Here's how you can do it:

  1. When the user logs in, save the refresh token provided by the API.
  2. Use the refresh token to request a new access token. This request should be sent to the API's token endpoint using the POST method.
  3. Replace the old access token with the new one received from the API.

Example in M code:

let

    refreshToken = "your_refresh_token_here",

    clientId = "your_client_id_here",

    clientSecret = "your_client_secret_here",

    tokenEndpoint = "https://api.example.com/oauth2/token",

    body = "grant_type=refresh_token&refresh_token=" & refreshToken & "&client_id=" & clientId & "&client_secret=" & clientSecret,

    response = Web.Contents(tokenEndpoint, [Headers=[#"Content-Type"="application/x-www-form-urlencoded"], Content=Text.ToBinary(body)]),

    newAccessToken = response[access_token]

in

    newAccessToken

 

If this helps, please consider marking it 'Accept as Solution' so others with similar queries may find it more easily. If not, please share the details.
Thank you.

Message 3 of 11
2,860 Views
0
rajendraongole1
Super User
Super User

‎01-16-2025 11:23 PM

Hi @ArvindBhatt  - Power BI does not automatically refresh access tokens for custom connectors. You must handle token refreshing manually within your custom connector.

Below is an example pattern for refreshing an access token:

RefreshToken = () =>
let
Response = Web.Contents("https://api.example.com/token", [
Content = Text.ToBinary("grant_type=refresh_token&refresh_token=" & RefreshToken),
Headers = [
#"Content-Type" = "application/x-www-form-urlencoded",
#"Authorization" = "Basic " & Base64EncodedClientCredentials
]
]),
ParsedResponse = Json.Document(Response),
NewAccessToken = ParsedResponse[access_token],
NewExpirationTime = DateTimeZone.UtcNow + #duration(0, 0, 0, ParsedResponse[expires_in])
in
[Token = NewAccessToken, Expiration = NewExpirationTime];

Handling authentication for Power Query connectors - Power Query | Microsoft Learn

Custom Connector with Token Refresh - Microsoft Fabric Community





Did I answer your question? Mark my post as a solution!

Proud to be a Super User!



Message 2 of 11
2,864 Views
0

Helpful resources

Announcements
Fabric Data Days Carousel

Fabric Data Days

Advance your Data & AI career with 50 days of live learning, contests, hands-on challenges, study groups & certifications and more!

October Power BI Update Carousel

Power BI Monthly Update - October 2025

Check out the October 2025 Power BI update to learn about new features.

FabCon Atlanta 2026 carousel

FabCon Atlanta 2026

Join us at FabCon Atlanta, March 16-20, for the ultimate Fabric, Power BI, AI and SQL community-led event. Save $200 with code FABCOMM.

View All