DOCUMENTATION
Developer Community
Recipient login

Developer Community

Ask a Question
Back to All

Linking the same instituion tice

about 1 year ago by Theo

See here https://docs.akoya.com/docs/token-flow#refresh-token-expirations

"If your app rotates tokens before a rolling expiration date or if tokens expire and the end-user must go through the consent flow again, you may link the new refresh token with the end-user by matching the sub value in the ID token's JWT claims."

I understand user must go through the consent flow again, but it's not sure how we can tell Akoya that we're "re-linking" the same thing. Should we send something different at this endpoint?

Or maybe we're connecting a new token and now that we have "two", we should check that the "sub" is the same. If that's the case, we consider a duplicate and delete the old one?

We're just trying to better understand de-duping or updating tokens,