Abhishek Bhardwaj

@spdustin Thanks for the reply. I tried adding the callback URL but it didn't work for me. What API error were you getting? Was it happening after you were redirected...

I'd cloned the repository recursively so I don't think it was the issue in my case.

@petermikitsh I don't think you should be able to use a valid JWT to get a refresh token. If you do that, anyone can get a JWT and keep access...

I have an alternative which we've been using in production for a while now. Will dust it off and publish this weekend. :)