I’m interested in this topic too. The refresh functionality in AAM at the moment is actually refreshing the token by using the same token for authenticate, it’s quite different from a best practice of how JWT should be implemented, which is issue another token for refresh only when we a new token is issued.
