Xero - beautiful accounting software

Xero Developer Help Center

Xero Developer Community

Community > API Authentication >

Refresh Token Expire Time

Started by Vera Fakiman -   in API Authentication

Hi Team,

Is Refresh token expire time for 60 days counted from the first time we get the access token? So, we need to re-authenticate user to login every 60 days?
Or is it counted from each time we refresh the token?

HI Vera

You might well have already found an answer to this but that 60 day lifetime is 60 days from the last generated Access token NOT the original Access token.

So if the application is dormant for 60 days the user will need to re-authenticate with Xero unless the user has granted offline_access permissions in which case you can refresh the access token on their behalf ensuring no further re-authentication required from the user.

I hope that makes sense.




Nick Tingay