Correct way to handle OAuth token refresh for multi-org Partner App?

How do I correctly to manage OAuth token lifecycles for a multi-tenant Partner App deployed across diverse Genesys Cloud organizations? Our integration faces intermittent 401 Unauthorized errors when background jobs exceed the standard access token window.

• Attempted implementing a local token cache with aggressive expiration checks, but race conditions still occur during high-concurrency API calls.
• Verified that the service account retains valid integration:read and integration:write scopes, yet the refresh endpoint returns inconsistent results across different org environments.

It’s worth reviewing at implementing a singleton lock for the refresh routine. In my JMeter tests, concurrent requests often hit the refresh endpoint simultaneously, causing token invalidation. Use a mutex to ensure only one thread refreshes at a time. See the docs here: https://developer.genesys.cloud/authentication-and-authorization

The root of the issue is that token management is a backend engineering concern, not a dashboard configuration issue.

• Focus on queue performance metrics instead of API authentication logic.
• Consult a developer for OAuth implementation details.