We noticed when a user logs into Constant Contact using the same OAuth app a 2nd time the 1st authentications refresh token becomes invalid and we begin receiving "unknown, invalid, or expired refresh token" when attempting to refresh it. For context our users authenticate their Constant Contact account against a single form and could potentially have multiple forms that they want to integrate but we don't want to tie them to creating a single authentication in case they want to use a different Constant Contact login. The issue is we have no way to tell if they've already created an authentication with a given Constant Contact login since all we have is an access token. Is this behavior expected? If so is there a way we could solve for this using a single OAuth app?
... View more