Forum Discussion
Hi zachtines , I'd suggest checking whether the account you're using to login has Auto Sign-in enabled. If so, the refresh token will not be returned. This is what the "Note" on this page is referring to: https://developer.khoros.com/khoroscommunitydevdocs/reference/request-auth-token-oauth
One thing that's not clear from the documentation is that disabling Auto Sign-in via the admin will not resolve this issue for existing accounts, since the preference will have already been stored in the existing account. You would need to login to the UI with the account and disable Auto Sign-in in the individual account's preferences.
I hope this helps!
- zachtines5 months agoContributor
Hey AdamN! Thanks for the suggestion and insight. Do you know the path in the Account Preferences of where that's located at the user level? We're not seeing it on our end.
- zachtines5 months agoContributor
AdamN Also seems like the Note vs your reply is a little conflicting.
"Make sure that the Turn-off Auto Sign-in checkbox is cleared"
vs
"... checking whether the account you're using to login has Auto Sign-in enabled. If so, the refresh token will not be returned."
To confirm, we want Auto Sign in disabled, thus the admin setting SHOULD be checked. correct?
Then from the individual user we also want their account preferences to have this disabled as well?
- internal_eic2 months agoContributor
Hi AdamN
I'm facing the similar issue.
The Turn-off Auto Sign-in checkbox is enabled in the Community Admin > System > Auto Signin / Cookies. If we clear it to generate both access token and refresh token, then will it have any impact?