OAuth 2.0 - Refresh Token

This video explains the main use case for refresh_token. In also touches on user session management in the context of OAuth.
The video is too short to explain all aspects but the viewer should get a good idea how these token work and what effect different types of expirations have.

To find more information checkout these web sites and RFCs
- RFC 6749 (OAuth 2.0)
- RFC 7009 (Revocation)
- oauth.blog, a list of blogs on the topic of OAuth and OpenID Connect

You can also check my book "API Development - A Practical Guide for Business Implementation Success" which is available via Apress or Amazon for a broader picture on api development.

If this video was helpful to you, please consider buying me a coffee:
https://www.buymeacoffee.com/saschaze...