We keep on receiving the error message everytime our app attempts to renew the refresh token. We’ve been receiving the same issue lately. Usually when we encounter this issue, we just reauthorize the app as a workaround and the problem is solved. But we started encountering problems with reauthorizing the app as well. When we “Add” our app in Activation, it redirects us to a wrong landing page in our system (there is no information yet if this happens before or after redirection for OAuth) . We also use tried using the “Add URL” but the same thing happens.
Error? 1. Everytime our system renew our token we get this error {“reason”:“Invalid Token!”,“error”:“invalid_grant”} 2. We reauthorize app but fails.
Hi @housing_ring, it seems to me you are requesting a new access token instead of using the refresh token to request the next access token. You should ideally not be required to reauthorize the app to gain the next access token.
It looks like you are passing a request to the /oauth/token endpoint using the client ID and client secret as query parameters, but this should be sent as an Authorization header rather than as a query parameter.
it seems to me you are requesting a new access token instead of using the refresh token to request the next access token.
Yes, you’re right. The reason we performed this method was that we cannot request a new token using our refresh token. We always get the invalid_grant error.
It looks like you are passing a request to the /oauth/token endpoint using the client ID and client secret as query parameters, but this should be sent as an Authorization header rather than as a query parameter.
Sorry, there was a slight mix-up on this part. The link indicated on Step 1 was the link we got from the reauthorization button (“Add” button).
In regards to what you said, yes, we passed the client id and client secret as an Authorization header just as what the documentation says.
We also store our tokens in our database. And we are aware that refresh tokens last for 15 years but how come we get “Invalid_token”, “Invalid_grant” errors. Any idea?
We had a series of tests in our system and noticed that there was an inconsistency when renewing a token. Sometimes it is successful and sometimes it also returns an “Invalid_grant” error even thought we use the old refresh token strored in our database. Usually, error happens when token is renewed after days (let’s say after a week). Do you have any idea on what’s the cause or maybe how to prevent this in the future? If you need logs from our system for analysis, please let me know.
I am also having inconsistency issues renewing tokens (we store the new refresh and access token after every request ) and notice these 400s after a while after token has been created.
I’m running into the same issue as the other posters where I’m sending a properly formatted refresh token request and sometimes it succeeds and other times it fails with http 400 invalid grant. Can someone from zoom take a look? These kinds of bugs should not exist on your production platform.
BTW, I initially attempted to sign up for devforum.zoom.us with the same zoom account that I use for your marketplace and got the message “You cannot authorize Zoom Developer Forum Log-in HelperBETA”. I had to use a different zoom account to sign up for devforum.zoom.us. In other words, you can’t get your own oauth working on your own website. That’s really pathetic and you guys need to get your s*** together.
Hey @rsamarak
Sorry to hear you are having issues with refresh tokens and trying to authorize the Dev Forum Log-in Oauth, I can take a closer look to this issue
I will send you a private message to request more information
Please follow up there