The use of refresh tokens has been disabled for this application ?

jesper

I have issues refreshing JWT tokens. When I call POST <host>/api/jwt/refresh I am getting:

"fieldErrors": {
    "refreshToken": [
        {
            "code": "[disabled]refreshToken",
            "message": "The use of refresh tokens has been disabled for this application."
        }
    ]
}

...but I fail to see why, since I believe I have enabled everything. Although I cannot find any specific setting for refresh, JWT are enabled across the board.

Running FusionAuth v1.35.0 in a K8S/helm/docker install, system has 2 applications and 2 tenants. Both apps and both tenants have JWTs enabled. Copy/paste from the "View tenant/application" looks like this (similar for both apps and both tenants):

JWT
Issuer: 			___.com
Enabled: 			Yes
JWT time to live in seconds: 	1800
Access Token signing key name: 	webclient
Access Token signing key Id: 	....
Id Token signing key name: 	webclient
Id Token signing key Id: 	....
Refresh Token time to live in minutes: 	43 200
Refresh Token expiration: 	Fixed. The expiration is calculated when the token is first created.
Refresh Token usage: 		Reusable. The value does not change after it has been created.
Access Token populate lambda Id: 	Feature disabled. No lambda selected.
Id Token populate lambda Id: 	Feature disabled. No lambda selected.

dan

@jesper What does the Security tab on your application config say?

In particular the Generate refresh tokens setting?

https://fusionauth.io/docs/v1/tech/core-concepts/applications#security