- Environment: Genesys Cloud v10.5, EU-West Region
- Integration Type: Premium App (AppFoundry)
- Auth Flow: Multi-Org OAuth 2.0
- SDK: @genesyscloud/web-messaging-sdk v2.4.1
Just noticed that our web messaging widget throws a 403 Forbidden error immediately after the initial connection is established. This occurs specifically when the backend service attempts to refresh the OAuth token for a secondary organization within our multi-org architecture. The initial handshake succeeds using a valid access token, but subsequent API calls to /api/v2/organizations/{orgId}/users/{userId}/messages fail with a 403 response containing an invalid_grant error message.
The token refresh logic follows the standard AppFoundry guidelines for multi-org deployments, ensuring the client_id and client_secret are correctly mapped to the target organization. However, the 403 error suggests a permission mismatch or a caching issue with the token metadata. We have verified that the integration permissions include webmessaging:full and oauth:read. Is there a known latency issue with token propagation across organizations, or should we be implementing a specific retry mechanism with backoff to handle this transient state? Any insights into the expected behavior for token refresh sequences in this context would be appreciated.