From reading the Javadocs I gather that, by obtaining an authorization code on behalf of a user (in my case an admin), then creating a BoxAPIConnection(clientid, clientSecret), and finally calling connection.authenticate(code), I will have obtained all the tokens that are necessary for making (at least immediate) API calls.
But, although the BoxAPIConnection does automatic 'access' token refreshes, what happens to the 'refresh' token (which normally would expire in 60 days). Can the connection be trusted to refresh this automatically too? (let's say that my app saves the stored connection state -using the sdk- and whenever it restarts, it creates a new connection restoring this saved state). Would be great if somebody could enlighten me on this, as I am not able to find any documentation on it (although I was able to see some hooks for refreshing a 'refresh' token in the deprecated APIs that used BoxClient and other classes, etc.).
Please sign in to leave a comment.