Hi All !! I have already implemented code grant flow for creating access tokens, but I read that refresh token expires 7 day later, and we have to go back and make 2 steps again, does anybody knows if there's a way to create access tokens programaticaly?

Do TBA instead

Refresh tokens are manual...this is amazingly poor. We are trying to integrate with Oauth2, but seem to have the same issue...manually intervention every 7 days. TBA isnt an option as its not supported by the third-party.

TBA is just OAuth 1.0 and was designed to have long lived tokens. On the one hand, you can blame NetSuite for not having multiple OAuth 2.0 integration options, but you could just as easily blame the third party client for not supporting OAuth 1.0. For situations like this, sometimes you can design your own middleware service, which takes a request from the third party, using whatever authentication method they support, and then makes the OAuth 1.0 / TBA request to NetSuite. It’s unfortunate that this is necessary, but when dealign with two third party services, you can’t always ensure that they have any supported way to integrate, and sometimes you need to build your own, or use an integration/ETL service like Celigo or Boomi.

Well I asked on netsuite's support and looks like they will make an enhancement

Hi Marcos - it would be great to hear of any updates on this. We implemented OAuth and then realised that the token cannot be refreshed. We are using TBA for now but it is not as good a solution for and we will switch back to OAuth once this change is live.

I had the same issue with a third party app that doesn't support Oauth1. In the meanwhile NetSuite is improving Oauth 2 , I'm using old fashion User Credentials authentification. Not really safe but that's doing the job. (be sure to use a role with heavy limitations access).