I would like to know if when refreshing an access token (point 4. here : https://dev.frontapp.com/docs/oauth), the previous token is disabled even if his 1 hour lifetime is still ongoing, so there is only one token that is being replaced each time we do a refresh call to your API?
Or the previous token is still valid till the end of his 1 hour lifetime ?
Thank you in advance for your answer.
Best answer by jasonView original
@tomasz , only one token will remain valid, so yes - if you refresh an access token which has not expired due to hitting it’s 1-hr lifetime, the refresh will cause the old token to expire.
I’ll see if we can add this info to our OAuth docs - thanks for raising this!