Skip to content

30-Day Refresh Token Expiration #397

Description

@mert-ersoy

Currently, OAuth refresh tokens become invalid exactly 30 days after they are generated. For continuously running applications like chat bots and overlays, forcing users to manually re-authorize every single month causes severe disruptions and creates a highly negative user experience.

Because of this strict limitation and the resulting user frustration, developers and users are actively looking for ways to bypass the official Kick API and Cloudflare protections just to maintain stable, uninterrupted background services.

Proposed Solution:
We request a permanent solution to this issue to keep developers within the official API ecosystem. If tokens cannot remain valid indefinitely for security reasons, we strongly suggest extending the refresh token lifespan from 30 days to at least 90 days. This compromise would drastically improve the user experience and reduce the incentive to bypass official protections.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions