https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/740442#M9587 <P>Thanks for sharing.</P> <P>You don't need a separate <STRONG>OAuth2 authorization endpoint</STRONG> for the Report State API. Instead, your cloud service should already be managing <STRONG>access and refresh tokens</STRONG> for each user through the initial account linking process. The Report State API simply reuses these existing tokens.</P> <P>If an access token expires, your service needs to use the standard <STRONG>OAuth2 refresh token flow</STRONG> that you've already implemented. Google doesn't have a special endpoint for refreshing tokens for the Report State API—your own OAuth2 server handles the entire token lifecycle.</P> <P>The reason for this design is that the Report State API isn't a user-facing process; it's a way for your cloud service to proactively update Google about device state changes. Reusing the existing OAuth2 infrastructure ensures consistent and secure authorization without forcing users to re-authenticate.</P> Tue, 02 Sep 2025 13:53:40 GMT arm_dpe 2025-09-02T13:53:40Z https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/737710#M9474 <P>According to this article an access token need to be created. I have done this. however, how to refresh this token or is it valid forever ? I wish to get an access token and refresh token using a normal oauth2 client instead of the oauth2L tool</P><P>1. Is there a Google report state&nbsp; oauth2 authorization endpoint ? if yes, it this called via implicit ? how to call this ?</P><P>2. Is there Google&nbsp; report state oauth2 token endpoint for getting the token for a new session or refresh ?</P><P>Why is report state implement via this custom tool instead of a normal oauth2 client&nbsp; ?</P><P><A href="https://developers.home.google.com/cloud-to-cloud/integration/report-state?authuser=0" target="_blank">https://developers.home.google.com/cloud-to-cloud/integration/report-state?authuser=0</A></P><P>&nbsp;</P> Sat, 23 Aug 2025 13:49:03 GMT https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/737710#M9474 debugging 2025-08-23T13:49:03Z https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/740442#M9587 <P>Thanks for sharing.</P> <P>You don't need a separate <STRONG>OAuth2 authorization endpoint</STRONG> for the Report State API. Instead, your cloud service should already be managing <STRONG>access and refresh tokens</STRONG> for each user through the initial account linking process. The Report State API simply reuses these existing tokens.</P> <P>If an access token expires, your service needs to use the standard <STRONG>OAuth2 refresh token flow</STRONG> that you've already implemented. Google doesn't have a special endpoint for refreshing tokens for the Report State API—your own OAuth2 server handles the entire token lifecycle.</P> <P>The reason for this design is that the Report State API isn't a user-facing process; it's a way for your cloud service to proactively update Google about device state changes. Reusing the existing OAuth2 infrastructure ensures consistent and secure authorization without forcing users to re-authenticate.</P> Tue, 02 Sep 2025 13:53:40 GMT https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/740442#M9587 arm_dpe 2025-09-02T13:53:40Z https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/740735#M9590 <P>Many thanks. So I need to change my access token&nbsp; for sending report state after google refreshes the token to my OAUTH service?</P><P>&nbsp;</P> Thu, 04 Sep 2025 04:21:06 GMT https://www.googlenestcommunity.com/t5/Smart-Home-Developer-Forum/OAuth2-access-token-for-report-state-session/m-p/740735#M9590 debugging 2025-09-04T04:21:06Z