Skip to Content
Former Member
Jun 17, 2016 at 09:56 AM

How to restrict the refresh token OOTB web service to return same access token value till its expiry?


We are following the OOTB access token and refresh token mechanism with the default expiry time of 12 hours and 30 days respectively. A new access token gets created on executing refresh token before expiry of the access token with the same refresh token value. We need to restrict this behavior and allow the refresh token web service to return new access token only after it has expired and it should return the existing access token till its expiry.