![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 76%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOE%3C/text%3E%3C/svg%3E)
25,149 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
@Oscar Espinosa Thank you for reaching out to us, regarding your requirement, discussed with my team and below is the explanation for your issue.
I am assuming that you are using Single Page application (SPA) which has 24-hour lifetime of refresh token.
As you already have the valid Refresh token before the expiration of client secret, that refresh token is valid until you sign out from the application.
Every time, your session is about to expire, refresh tokens acquired using the initial refresh token carry over that expiration time and the app silently acquires the new access token and refresh token every 24 hours (in this scenario) from application cache.
Users don't have to enter their credentials and usually don't even see any related user experience till they have valid refresh token in the application cache. You won't require to get the new refresh token from new client secret till you have valid refresh token.
Let me know if you have any further questions, feel free to post back.
Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.