Another way of retrieving updated information about the customer is to use the silent re-authentication flow. This is, in essence, the same flow described in Sign in customers but without presenting the sign in screen to the customer.

You activate the silent re-authentication flow by including a prompt query parameter with the value none in the authorization request.

If the customer is already signed into Pliro they will immediately be redirected to the redirect_uri with an authorization code.

If they are not signed into Pliro, the customer will be redirected to the redirect_uri with an error parameter set to login_required. At this point, you should consider signing the customer out of your website.