A new token is required if the access_token has expired. This is done by sending the access_token in combination with the refresh_token in a merchant.token API call. The access_token expires six hours after creation, and the refresh_token ten days after creation.
It’s recommended to always use the merchant.token logic when possible instead of creating a new authorization with the secret key.
|10 days (240 h)