Hi Ishara, On Wed, Jul 29, 2015 at 5:22 PM, Ishara Karunarathna <[email protected]> wrote:
> Hi, > > On Wed, Jul 29, 2015 at 4:47 PM, Rajith Vitharana <[email protected]> > wrote: > >> Hi Ishara, >> >> Thanks for the response. As per [1], [2] google refresh tokens never >> expires, quoting the statement "Refresh tokens are valid until the user >> revokes access. This field is only present if access_type=offline is >> included in the authorization code request" normally access tokens >> expires in 60 mins. Further more there are no password grant type in >> google. So we have to go to consent page to get the tokens. (Although there >> is a service account concept where we need to a key to get access) >> > > In that case I think its ok. But you will have to handle token > revocations. > google-api-client library handles token revocations itself. If the access token expired, it will use refresh token to retrieve an access token. Thanks, -- Rajith Vitharana Software Engineer, WSO2 Inc. : wso2.com Mobile : +94715883223 Blog : http://lankavitharana.blogspot.com/
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
