OAuth 2.0 FAQ

This section covers common FAQs with OAuth 2.0 integrations along with possible solutions.

Does changing my password invalidate the refresh token? What will happen when I change my password?

No, it does not. However, changing the password will follow up with a page that shows a list of one’s OAuth Apps and an user then can choose to deauthorize any of the apps one may not have authorized.

Will I be disconnected from all my OAuth authenticated Apps when I change my password?

Not automatically, but an user will be able to choose what to disconnect.

Will I always receive the same refresh token when exchanging the refresh token with the access token?

Not always. The best practice is to store the latest refresh token as the refresh token may change.

Is there any way to complete the authentication process without opening up the browser?

No, an user must log in to the browser.