We have two types of tokens in OpenID Connect: ID and access token.

These tokens can be used to gain access to users' information and access to protected resources on behalf of the users. The authorization server authenticates the user and, in some cases, the client application before producing these tokens to the client.

Optionally refresh tokens can also be produced by the authorization server. The client application can use these refresh tokens to request new access tokens without re-authenticating the user.

To learn more about how these tokens can be generated and utilized by the client application, please refer to https://identity-developer.cyberark.com/docs/oidc-authentication

To learn more about the tokens, please refer to the links below: