# OAuth2 错误：刷新令牌已过期

- **ID:** `api/oauth2-refresh-token-expired`
- **领域:** api
- **类别:** auth_error
- **验证级别:** ai_generated
- **修复率:** 85%

## 根因

刷新令牌已超过其过期时间，无法用于获取新的访问令牌。

## 版本兼容性

| 版本 | 状态 | 引入 | 弃用 |
|------|------|------|------|
| OAuth 2.0 | active | — | — |
| RFC 6749 | active | — | — |
| Google OAuth2 API v2 | active | — | — |
| Microsoft Identity Platform v2.0 | active | — | — |

## 解决方案

1. ```
   Redirect the user to the authorization endpoint to obtain a new refresh token via the full OAuth2 authorization code flow.
   ```
2. ```
   Implement a token refresh mechanism that checks token expiry and proactively re-authenticates before expiration using the 'offline_access' scope.
   ```

## 无效尝试

- **** — The token is permanently expired; retrying only consumes rate limit. (90% 失败率)
- **** — Token signatures are verified by the server; any tampering invalidates it. (100% 失败率)