I want to use Google API refresh tokens forever
There is a process to obtain a refresh token via OAuth authentication for Google API, and then obtain an access token from the refresh token to validate the receipt.
The other day the refresh token suddenly expired and the receipt validation failed. Our service stopped processing billing. Below is the error when it failed.
{
"error": "invalid_grant",
"error_description": "Token has been expired or revoked."
}
I thought refresh tokens reset their expiration date each time they are used, so why did they expire? I don't think the following rules apply.
You must write your code to anticipate the possibility that a granted refresh token might no longer work. these reasons:
- The user has revoked your app's access.
- The refresh token has not been used for six months.
- The user changed passwords and the refresh token contains Gmail scopes.
- The user account has exceeded a maximum number of granted (live) refresh tokens.
- The user belongs to a Google Cloud Platform organization that has session control policies in effect. (https://developers.google.com/identity/protocols/oauth2)
I want to use the refresh token forever. Thank you in advance.
Refresh tokens do not expire by design there are a few things that can cause them to expire as you have listed. However there is one you have not listed.
If you check the docs for Experation you will find it also says.
If your app is in testing set it to production and your refresh token will stop expiring.
So as long as your app is in production, the user does not revoke your access, and they have less then 50 outstanding refresh tokens for that user, and you have used it at least once in the last six months. (gmail scope the user does not change their password). The refresh token should not be expiring.
That being said your system should be designed to handle a refresh token expiring and request access of the user again. or notifying the admin if this is a backend system.
- Google Cloud calendar API connection error
- Google Sheets Image() function now requires users to hit Allow Access
- Error: 10: Developer console is not set up correctly (Not Using Firebase) (One Tap sign-up)
- Google Sheets, JWT client with Service Account
- Google Meet REST API Permission denied on resource Space (or it might not exist) error
- Can we send a notification to phones enrolled on the Android Management API solution (google)
- Unable to refresh access token : response is "unauthorized_client"
- How to test Google's OAuth granular consent screen
- how does users.watch (in gmail google api) listen for notifications?
- Create domain shared contact in Gsuite using Contacts API in C#
- Google cloud, unable to edit policies to enable permission to create Service Account Keys
- Google Place with R
- Get Holidays List of a Country from Google Calendar API
- Accomplishing Oauth2.0 authorization with refresh token through Python (Google API service creation)
- Google Translate API (paid) vs Google Translate API (free)?
- Why does Google's YouTube Data API v3 "Queries per day" Quota increase more than I'm calling it?
- Google generative api with palm: 403 Request had insufficient authentication scopes. [reason: "ACCESS_TOKEN_SCOPE_INSUFFICIENT"
- Google API Client "refresh token must be passed in or set as part of setAccessToken"
- Google third app (testing) keeps dropping connection with google account
- Why does it turn into an unavailable room when I create a google resource calendar with its API?
- How do I add the languageCode to a new Google Places API request?
- NodeJS code to create a Gmail email draft with an attachment from Google Drive given a FileID
- Unable to access the API key using BuildConfig
- How can I use the Google Sheets API to append some data to a new row in a Google Sheet?
- Do Google refresh tokens expire?
- Webhooks for Event start on Google Calendar API
- Keystore file doesn't exist
- How can I list all the stops associated with a route using GTFS?
- How to retrieve daily costs through Google AdWords API v201309?
- How to start using Google API v3?