Per this article, https://developer.zendesk.com/api-reference/ticketing/oauth/grant_type_tokens, we can generate tokens via oauth dance for our customers. The deadline to use the new oauth flow is coming up. Currently, if we don't set expires_in then the tokens we get will never expire. My question is, will it ever be required to set expires_in or will letting tokens live forever always be an option?
Will expires_in field ever be required for oauth token grant flow
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Currently, if you don’t set the expires_in parameter when generating OAuth tokens in Zendesk, the tokens do not expire and remain valid indefinitely. However, with Zendesk’s move to enforce new OAuth flows and stricter security standards, it is highly likely that in the near future, setting token expiration and using refresh tokens will become mandatory. This means never-expiring tokens will probably no longer be supported. To prepare, it’s recommended to start implementing token expiration and refresh mechanisms now and stay updated on Zendesk’s announcements regarding OAuth changes.