Nice. As bonus we can also document that refresh token expiry needs to be longer than default (for offline support) and actual token needs to expire fast (to resolve this problem)