The application will disappear from the list of applications with the received access
Hello everyone and firstly Im sorry for my lame English.
From time to time, we have problems with updating the token, or rather, we simply can not use the refresh_token This is what it looks like:
- We allow the app access manually and get the first access_token and refresh_token. At this stage, everything is OK, the application is in the list that was granted access (check through this page: https://myaccount.google.com/permissions ):
- AcessToken successfully used and updated for some time (usually several weeks), but then the app from the list of apps that got access disappears (https://myaccount.google.com/permissions)
And disappears as if someone manually denies him access.
And, of course, the last access_token stops working, and with it the refresh_token. After that, we again need to manually confirm the app's access for the first time. Because refresh_token, certainly, is not valid after the app disappears from the list.
Please, anybody, tell me what this might be related to. And for what reason can an app disappear from the list, if no one manually restricts access to app?
Maybe there are some reasons: improper use of tokens and so on-the reasons why the application may disappear. Or private account settings that we don't know about? We will be glad to receive any suggestions, thank you in advance.
If your application is still in testing or has not been though the verification process then refresh tokens will expire between one to two weeks. This may also cause the application to be removed from the users permission, however I cant say I have actually checked but it makes sense. From googles end the easiest way to ensure a refresh token will expire would be to revoke the users permission.
Set the app to production and apply for verification. Should fix the issue.
- Chrome identity launchWebAuthFlow only opens empty callback page
- Limiting the scopes of an OAuth 2.0 flow
- Is Endpoint Security Authentication in WSO2 APIM Done per API or per request?
- Why do i need to specify redirect_uri if i am authenticating from server side?
- Error 400: invalid_scope with Postman and Google OAuth2
- Issues Adding SMTP.Send Permission to Azure Application for Office 365 SMTP
- PHP - How to get OAuth 2.0 Token
- UPS Outh Rating API return Invalid Authentication Information
- How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
- How to get Optum sandbox to authenticate with OAuth 2.0 using Java and okhttp
- Spring Boot redirection back to login page
- New Google place api using google OAuth, ask failed to refresh token
- Authentication Problems using Google's ARCore API
- Getting OAuth code challenge on loopback server
- How do I solve audience (aud) invalid claim error for downstream api service?
- oauth 2 parameters can only have a single value: scope
- #oauth2 security expressions on method level
- Calling spring authorization server OAuth2 REST endpoints
- Google AdWords API authorization raising AdsCommon::Errors::AuthError
- Google OAuth 2 Error 400: redirect_uri_mismatch but redirect uri is compliant and already registered in Google Cloud Console
- Passport - Node.js not returning Refresh Token
- AWS Cognito: Missing Scopes in Access Token with Custom UI and Device Remember Functionality for MFA
- Cross-client Google OAuth: Get auth code on iOS and access token on server
- How to generate GOOGLE_CLIENT_ID and GOOGLE_CLIENT_SECRET without a domain?
- Spring Gateway and OAuth
- OAuth Client Credential Flow - Refresh Tokens
- Django OAuth2 Authentication Failing in Unit Tests - 401 'invalid_client' Error
- Add OAuth authentication for HTTP request triggers
- OAuth2 implementation and user management Django
- How to enable a submit button if form fields are auto-filled by the browser using saved credentials on page load?