Hi,

I've got my client as well as auth server working using authorization code grant with pkce.

I'm able to generate access token and also include refresh token with it.

Next, I'm trying to generate new access tokens when it expires using the refresh token.

For the server, I followed the instructions at https://oauth2.thephpleague.com/authorization-server/refresh-token-grant/.

For the client, "Refreshing a token" example at https://oauth2-client.thephpleague.com/usage/.

However, I'm getting the response invalid_scope from the auth server.

Any ideas?

After trying a few things, in the last attempt, I didn't set the scope and now refresh token is able get new access token.

This might be an implementation issue on my end.