When a Refresh Token Becomes Unusable

gabriela.pantea · November 25, 2024, 1:49pm

Overview

This article clarifies in which scenarios a Refresh Token will become unusable.

There are two main scenarios where a Refresh Token becomes unusable:

When a new Refresh Token is issued. The previously issued ones are invalidated and can no longer be used.
When a Refresh Token is revoked. It is invalidated and can no longer be used. Revoke can be performed using the Dashboard, Authentication API, and Management API.

Topic		Replies	Views
What causes "Invalid Refresh Token" errors? Help refresh-tokens , refresh_token	3	17003	March 25, 2018
Invalid Refresh Token Help refresh-tokens , refresh_token	2	8523	March 26, 2018
Auth0 unlink Refresh token Help auth0	4	3031	July 13, 2020
Unable to revoke refresh tokens Help auth0 , refresh-tokens	2	2067	December 21, 2022
Refresh Tokens Comes Invalidated When Requested Using Authentication API Knowledge Articles refresh-token , invalid , grant , rotation	1	1994	August 12, 2022