Hey Iihua, thank you for your replay
We have to use refresh token with long expiration time (about half a year long). Our native app stored that refresh token and using it to generate new access tokens (with short expiration times).
When the user is logged out or deleted from the 3rd party connection (Azure AD for example), how can we automatically detected & revoke the refresh token?