OAuth, including Multi-Factor Authentication, requires a connection if the cookie or code has expired.