Handling of failed federated token refresh due to network error

Describe the bug

If federated token refresh fails due to a network error, auth resets requiring the user to manually sign in again. Since token refreshing hasn’t failed due to rejection by the identity provider the refresh token may still be valid and can still be used once internet access is restored.

I’m using Auth0 as my federated auth provider.

To Reproduce Steps to reproduce the behavior:

I perform the following in a React Native app running in the iOS simulator.

1. Set token expiry to 60 seconds in Auth0 console
2. Authenticate in the app
3. Disconnect from the internet (turn off wifi on mac running simulator)
4. Wait 60+ seconds
5. Open the app. Token refresh will be attempted but fail due to lack of internet access.
6. Reconnect internet

From this point on the API client calls reject with "Missing Authentication Token". In the scenario described here token refreshing has failed because of a network problem, not because my identity provider (auth0) as rejected the refresh request. I feel this type of error should be treated differently from a “identity provided responded and refused to refresh the token” type error.

Expected behavior

If token refreshing is not possible because of a network error the API client shouldn’t clear/reset the current federated sign in. This is particularly important in React Native as network access could be intermittent.

The documentation for handling federated auth needs a lot of work and should better explain how the API client behaves if token refreshing has failed.