User17138134407412698132 (Customer) asked a question.
I have issues with getting a new refresh token. I always receive the existing refresh token until it just expires.
From Okta docs:
https://developer.okta.com/docs/guides/refresh-tokens/main/#refresh-token-rotation
Whether Okta returns a new refresh token with a new access token depends on the refresh token lifetime setting. If the lifetime setting hasn't expired, when a client makes a request for a new access token, Okta only returns the new access token. After the lifetime setting expires, Okta returns a new refresh token and a new access token.
I have problems even understanding this statement. If the lifetime hasn't expired, I don't get new refresh token. However, after its lifetime expires, it is no longer valid, and the request gets rejected.
I have been able to verify this myself.
Doing /v1/token request every 10 seconds. It works for 10 minutes, always returns new access token but the same refresh token. After 10 minutes the refresh token expires and I can no longer access the endpoint at all.
I also don't want to rotate refresh token after every use.
What can I do and what am I missing?
Hi @User17138134407412698132 (Customer) , Thank you for reaching out to the Okta Community!
This question is more appropriate for our dedicated Okta Developer Forum.
My advice would be to reach out via devforum.okta.com to take advantage of their expertise.
While we'll do our best to answer all of your questions here, this medium is more inclined towards Okta core products and features (non-custom/developer work).
Regards.
--
Ask Us Anything about Okta FastPass - now thru December 11th.