[bastienbeurier]

Thanks a lot for all the insights, this is great!

"Rather our customers would get into situations where they inadvertently revoked access, the user that authorized the integration initially left the company and it was automatically disabled, etc. and there was no notification that it happened. Basically all of the lifecycle management side that couldn't be automated down to "refresh my token when it's about to expire" sucked. So anything you're looking to support there would be a huge value-add IMO."

I can definitely see value in notifying that API access has been revoked. If you think of any other case you'd like covered, I am interested!