I'm looking at token auth docs and I'm confused what to do, if API does not return refresh token. BearerTokens seems to enforce refresh token. Any pointers?

I would specify an empty string for a refresh token if a server doesn't respond with one.