How long is the oAuth authorization valid?

We have customers whose connection to the Nuki API seems to break off. They then have to reconnect via oAuth. Is there a maximum period of validity for the access or should it always be possible to reconnect via a refresh token?
Thanks in advance!


It should be possible to use the refresh token to get a new access token (which expires in 1 hour), so in reality there is no maximum period of validity for the access.

The refresh token may be invalidated when the authentication happens again with the same user account from a different device, application or session. Do you know if the customer has logged in from some another device or initiated a new session?