How do access_token and refresh_token actually work?

puffing_devil · June 15, 2023, 2:11pm

For how long can the refresh_token be used?
The docs say

: Tokens are valid for up to one month after they are issued.

However, they also say:

If you wish to get up-to-date information after the token has expired, a new token may be issued to be used for the following month.

Does it mean that the refresh_token may be used to get a new access_token and refresh_token more than a month after their prior issue?
My main goal is to try to get user info without forcing them to re-login after the month-long token expiration period, and I have no way to test it on my side without knowing what rules Patreon sets in.

codebard · June 17, 2023, 10:18pm

Refresh tokens should be long lasting, but when you refresh you should still check if a refresh token was returned and save it if it was.

Dax · July 4, 2023, 1:17pm

If you automatically refresh tokens every month, is there a limit on how long the connection can exist without a user being required to re-establish a connection?

puffing_devil · July 5, 2023, 2:52am

How long exactly is

long lasting
?

codebard · July 12, 2023, 11:37pm

Consider months. But still you shouldnt wait that long to refresh a token.

Topic		Replies	Views
Refresh token expiration API Feedback	2	676	October 5, 2020
Access token for a longer than month (for server side)	2	272	May 22, 2023
Refresh Token Expiry	1	318	March 19, 2021
Manually expire access_token for testing	1	321	February 17, 2021
Access/Refresh Token Issues with APIv2 Client API Feedback	4	722	February 17, 2020

How do access_token and refresh_token actually work?

Related Topics