The token lifetime of the MS Graph API is not permanent, even the tokens you acquire through your personal account. This is the default based on our security compliance policy, after all, if the token is valid for a long time, there will be a certain security risk. Usually the access token will expire 1 hour after you get it, but we can also set the access token to expire up to 24 hours by configuring the token lifetime policy. When the token expires, can obtain a new access token through refresh token. The lifetime of the refresh token is up to 90 days.
Of course, disabling the refresh token doesn't require removing the application permission either, you can revoke it during its lifetime using power shell: Revoke-AzureADUserAllRefreshToken or the AAD Graph API: POST https://graph.windows.net/{tenant id}/me/invalidateAllRefreshTokens?api-version=1.6 HTTP/1.1
.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.