@monish.biswas , I would strongly recommend using Auth0 SDKs the SDKs by default will only use Auth0 Session and everytime they need to renew the access token , they will also renew the session
The answer for all the above is making an call to /authorize with an extra parameter called prompt=none like explained here
Once you call that, you can get new access tokens, Refresh and Keep the SSO session alive and if the session has expired or revoked, you will also know.