How long does a Box-API refresh token last?

Question

i'm writing an application which uploads files to the Box-API, for some clients but i'm having a problem i don't understand (I've laready opened a ticket for that but maybe you'll have some answers): The refresh token is expiring in almost one hour and sometimes less time.

I've no idea why this is happening and i though the refresh token was lasting one month, but i've installe the application on my client machine, the client authorized it in his box account, but after only half an hour he was propt to authorize it again cause the refresh token was "invalid".

What should i think?

I'm updating the refresh token everytime i get a new access token, so there shouldn't be problem with that. SHould i do otherwise? ANy idea?

Answer 1

There are two tokens:

• the authentication token, which signs the HTTP request, is valid for 1 hour.
• the refresh token, which is used to get a new authentication token, is valid for 60 days or until it is used.