Just noticed that the background service responsible for refreshing OAuth tokens in our multi-org AppFoundry deployment is starting to fail intermittently. The integration is built as a Premium App and manages connections across approximately 50 distinct Genesys Cloud organizations.
When the refresh endpoint is called using the client_credentials grant type, the platform occasionally returns a 401 Unauthorized response with the message "error": "invalid_grant". This is puzzling because the client credentials are verified correct, and the token expiration logic has been validated against the expires_in field from the initial token response. The issue seems to correlate with high-concurrency periods where the app is polling interaction data for multiple orgs simultaneously.
Environment details:
- Genesys Cloud Region:
US East - SDK Version:
genesyscloud-node-sdk v2.0.3 - App Type:
Multi-org Premium App
Is there a known rate limit or lockout mechanism applied to the /oauth/token endpoint specifically for multi-tenant architectures? We are seeing these failures spike during business hours, suggesting a potential throttling issue rather than a credential error. Any insights into the backend validation logic for token refreshes in high-volume scenarios would be appreciated.