Storing Access Token and Refresh Token

As per the documentation when we are getting access token and refresh token, we have to store in the database.

Is that the standard practice that is recommended to follow?

Hi @damitha_wijeratne,

Good question—and yes, this would be a standard practice. The reason being, you will need to use the refresh_token that is returned alongside the access_token originally, in order to request a new access_token when it expires. (The purpose of the refresh token is to get a new access_token and refresh_token pair).

Let me know if this helps to clarify. :slight_smile:


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.