The refresh token is only set on first authorization with google, so if it's empty we should warn users to revoke access from google
The refresh token is only set on first authorization with google, so if it's empty we should warn users to revoke access from google