Hello, I have a next problem.
I’m developing app where I do not want to persist any data about the user.
So, my case is next:
- User comes to my app
- User authorizes through Zoom OAuth
- My app now get access_token and refresh_token, and store it, for example, in memory
- During user session, I use this tokens for using Zoom API.
- After session expires and user is gone, I drop his access_token and refresh_token.
After a while user come back again and tries to authorize through Zoom OAuth. As far as I understand, now he can’t get new token without old refresh_token ? So, to use my app again he had to reinstall it, right?
Am I right, and Are there any workarounds ?
Even if I persist tokens for users, what can I do when user is trying to login again through Zoom, or trying to login from another device?
In this case, My app only will get ‘code’, and will not able to get access_token with this code (because tokens was already created before).
But my app can not detect user by code, so my stored tokens are useless.
Thanks a lot for your answers
Thanks a lot for your answer
Which App Type (OAuth / Chatbot / JWT / Webhook)?