ok, so the OAuth code remembers and refreshes the refresh token when
the refresh token rotates? I haven’t heard of a refresh token
rotating, only the access token. What is the problem with Duplicati
receiving the refresh token? The reports as I understand them are that
tokens, including refresh tokens, rotate every 12 hours or so, and
then we do not keep the new token so we are using a stale refresh
token. When we try to refresh the access token, we get an error
because of the stale refresh token. How does the problem manifest
itself?
It is almost as if the conditions are that you have to constantly use
the service for 12 hours, then something causes your tokens to be
invalid, then you have to generate a new token through the website.
Can we clearly articulate the circumstances required to lose access? I
think that will help with categorizing the various issues we are
seeing.