This seems to all work well and good for days, weeks, even months but sometimes the refresh process fails with the following error:
"error" : "invalid_grant",
"error_description" : "Login to account in current state is not allowed",
"errors" : [
My question is - what causes this error? I wish we could just ignore and try to refresh again but all subsequent refreshes fail with error 'Token not found' because the old refresh token is invalidated. This means the clients need to re-authorize their credentials.
My question is what causes this initial "Login to account in current state is not allowed" error? And what can we do to prevent it?