A new token is required if the access_token has expired. This is done by sending the access_token in combination with the refresh_token in a merchant.token API call. The access_token expires six hours after creation, and the refresh_token ten days after creation.
It’s recommended to always use the merchant.token logic when possible instead of creating a new authorization with the secret key.
Token | Expiration time |
access_token | 6 h |
refresh_token | 10 days (240 h) |
API Reference: api/merchant.token