What is the best practice for refreshing access tokens?
Do I wait until an error is generated?
Do I refresh based on age of access token?
Is it bad to refresh the token before every request?
Solved! Go to Solution.
Thank you for reaching out to Constant Contact's API Support.
I would suggest one of the first two options. I personally like to go with option two. I create two timers; one of the timers is set for two hours and the other is set for 24 hours. The two hour timer is reset any time I make an API call. If either timer reaches its end then I will go through the refresh process.
Can you explain the problem with option 3? Other than potentially hitting a rate limit (which for my application will not happen), what is wrong with refreshing before every request?
Option 3's only down side really is the rate limit. If that is not an issue with your integration then feel free to use it.