Token expiration

How long is a token valid for?

There’s a little information about tokens available here: Getting Started

That said, the token is valid for the period specified in the response body when you use POST /token. Here’s an example where the token is valid for 3667 seconds (61 minutes, 7 seconds):

{
        "token_type": "bearer",
        "expires_in": 3667,
        "access_token": "ABC123",
        "refresh_token": "ABC123",
        "scope": "read write"
}

Is there a default expiration time for the tokens?

Yes, there is! Access Tokens are valid for 1 hour + a random value of up to 10 minutes (so anywhere from 60 to 70 minutes). Refresh tokens are valid for 15 days.