OAuth Tokens invalidated after login with same account elsewhere?

My app is currently using OAuth at a user account level to access the Zoom API.

I have run into an interesting issue and would love some insight.

The OAuth works great, however, I have noticed occasionally that request will return 401 unexpectedly and before its expire time. After investigating, it appears that the token has been invalidated.

I created a couple environments for testing of my app, and I have noticed that if I get a token for the user account in one environment, then get a token for the same user account in another environment, then return to the first environment and try to use the API, I get a 401 error, because the old token is no longer good.

Heck, the issue occurs if I do this in the same environment with two different browsers.

It seems counterintuitive to me that only one token set can be used at a time, and this is intended as a user-level token to enable the user to manage their meetings from our portal.

Did I set up the app wrongly in the marketplace? Or is there a hard line in the sand that only one token can ever be active at a time and thus I’m going to have to re-think how I handle managing a user’s zoom data?

Hey @Randolpho,

Currently we don’t support multiple tokens for OAuth, however, we are in the process of developing this.

(ZOOM-88936). Stay updated here: https://marketplace.zoom.us/docs/changelog

Thanks for you patience,

Well that’s disappointing, but I can work around it.

1 Like

Yes, please implement a work around until we support it.