It seems that the technical white paper on REST API is missing a section on how to use the refresh token. Could you please confirm that the following is correct? It's based on a section of the white paper. with my amendments.

To refresh the access token using the refresh token:
- application has to make a call to https://standard-id.hansaworld.com/oauth-token with the following POST parameters:
- client_id = Client ID from Developer Credentials in MyStandard
- client_secret = Client Secret from Developer Credentials in MyStandard
- redirect_uri = Application's URL that will handle the callback from StandardID that will contain the token
- refresh_token = Refresh token received when the access token was first received (after manually logging in)
- grant_type = must be "refresh_token"

Thanks

Paul