No way of obtaining refresh _token from gapi.auth2.authorize api from client side

[logesh2496]

Hi,
Am using gapi.auth2.authorize api to allow multiple user accounts being signed in. but it's callback function doesn't provide a refresh_token. Requirement is to keep the users until they sign out.
How can i achieve this as the access_token gets expired in an hour of time? I cannot have a server to do the server side authorization flow. Is there any way to obtain the refresh_token in pure client side? Would following PKCE help me? If yes, what's the endpoint for POST?

[argarner]

@logesh2496 I came here to create an issue re total lack of documentation explaining how to accomplish this task, and after spending hours looking into the PKCE alternative. It's completely ridiculous that Google Sign-In has existed for so long and they haven't properly documented this.

See this stack overflow answer here.

All that's required is adding a listener, which automatically runs shortly before the token expires (which the docs do not mention in any way) and it receives a GoogleUser you can request a reload on, which updates the id_token (I'm not using the access_token so can't confirm it updates, but I assume it does).

This other listener can be used to detect if the user logs out of Google altogether, if you want to log them out of your app at the same time.

I've noticed these create memory leaks on repeated login/logout (creates multiple listeners that persist throughout the session, instead of overwriting the one listener), so make sure you don't do anything comp intensive in them. I'm just updating an id_token or running logOut() if they aren't already.

[logesh2496]

Hi @argarner
Thank you for your answer. It works as expected. But my use case is to use multiple accounts signed in at the same time, so i cannot use "gapi.client.init" api thus don't have access to GoogleAuth instance. How do i overcome this? Is there any way to listen to the respective user(currentUser) and reload auth response?

[dvanderb]

This looks like a question about Google Login and Authentication. Please address this question to the google-signin tag on stackoverflow(https://stackoverflow.com/questions/tagged/google-signin)

If you believe this is in error, please reopen the issue.