{
  "id": "api/oauth2-refresh-token-expired",
  "signature": "OAuth2 error: refresh_token_expired",
  "signature_zh": "OAuth2 错误：刷新令牌已过期",
  "regex": "refresh_token_expired",
  "domain": "api",
  "category": "auth_error",
  "subcategory": null,
  "root_cause": "The refresh token has exceeded its expiration time and cannot be used to obtain a new access token.",
  "root_cause_type": "generic",
  "root_cause_zh": "刷新令牌已超过其过期时间，无法用于获取新的访问令牌。",
  "versions": [
    {
      "version": "OAuth 2.0",
      "introduced": null,
      "deprecated": null,
      "removed": null,
      "behavior_change": null,
      "status": "active"
    },
    {
      "version": "RFC 6749",
      "introduced": null,
      "deprecated": null,
      "removed": null,
      "behavior_change": null,
      "status": "active"
    },
    {
      "version": "Google OAuth2 API v2",
      "introduced": null,
      "deprecated": null,
      "removed": null,
      "behavior_change": null,
      "status": "active"
    },
    {
      "version": "Microsoft Identity Platform v2.0",
      "introduced": null,
      "deprecated": null,
      "removed": null,
      "behavior_change": null,
      "status": "active"
    }
  ],
  "os_specific": {},
  "dead_ends": [
    {
      "action": "",
      "why_fails": "The token is permanently expired; retrying only consumes rate limit.",
      "fail_rate": 0.9,
      "condition": "",
      "sources": []
    },
    {
      "action": "",
      "why_fails": "Token signatures are verified by the server; any tampering invalidates it.",
      "fail_rate": 1.0,
      "condition": "",
      "sources": []
    }
  ],
  "workarounds": [
    {
      "action": "Redirect the user to the authorization endpoint to obtain a new refresh token via the full OAuth2 authorization code flow.",
      "success_rate": 0.95,
      "how": "Redirect the user to the authorization endpoint to obtain a new refresh token via the full OAuth2 authorization code flow.",
      "condition": "",
      "sources": []
    },
    {
      "action": "Implement a token refresh mechanism that checks token expiry and proactively re-authenticates before expiration using the 'offline_access' scope.",
      "success_rate": 0.85,
      "how": "Implement a token refresh mechanism that checks token expiry and proactively re-authenticates before expiration using the 'offline_access' scope.",
      "condition": "",
      "sources": []
    }
  ],
  "workarounds_zh": [
    "Redirect the user to the authorization endpoint to obtain a new refresh token via the full OAuth2 authorization code flow.",
    "Implement a token refresh mechanism that checks token expiry and proactively re-authenticates before expiration using the 'offline_access' scope."
  ],
  "transition_graph": {
    "leads_to": [],
    "preceded_by": [],
    "frequently_confused_with": []
  },
  "official_doc_url": "https://oauth.net/2/grant-types/refresh-token/",
  "official_doc_section": null,
  "error_code": null,
  "verification_tier": "ai_generated",
  "confidence": 0.85,
  "fix_success_rate": 0.85,
  "resolvable": "partial",
  "first_seen": "2024-03-15",
  "last_confirmed": "2024-06-01",
  "last_updated": "2024-06-01",
  "evidence_count": 1,
  "tags": [],
  "locale": "en",
  "aliases": []
}