Old tokens expiring on refresh - Suggestion

Alexander_Peters · September 23, 2019, 9:21pm

When refreshing an access token, the previous token is invalidated. This causes issues with multi-threaded or distributed applications, as one request can invalidate a token that another has already begun using, which causes an invalid_grant error.

Infusionsoft’s API would be significantly easier to work with in these kinds of applications if old tokens were left valid until their normal expiration time. Other applications that we connect to with OAuth seem to be doing this, and it allows us to use their APIs without any manual thread locking, which is faster and less error-prone.

Is this something Infusionsoft could implement?

John_Borelli · September 24, 2019, 3:33am

It would nearly be impossible for this to happen if the refresh was managed by a scheduled service apart from the application. The the application itself would need only to read the current/active token from a database…this is what other applications do and why it appears that they are doing something different.

Topic		Replies	Views
Token is expiring on random days API Q&A	5	1340	March 5, 2018
OAuth2 vs. API Key API Q&A	3	619	December 15, 2018
Invalid Client on Refresh Token API Q&A	1	1068	April 14, 2019
Refresh Token mechanism does not work well with many concurrent requests API Q&A	5	3233	June 21, 2019
Refresh Token! Assumptions/Questions API Q&A	6	1001	August 16, 2017

Old tokens expiring on refresh - Suggestion

Related Topics