Issue with OAuth workflow


We've found an issue regarding the OAuth Refresh token. If we make multiple OAuth workflows with the same client id and secret all previous refresh tokens become invalid. This causes huge issues to us when we have clients that have multiple accounts of our service to their restaurant account. For example we have a new chronogolf client that has 2 gift card solutions from us connected to each of their restaurants. For both accounts we had to do the OAuth workflow first for the gift card and then the second gift card raincheck. Now only raincheck has access to the account and gift card has no access because its refresh token is not valid.

Best Answer

Sign In or Register to comment.