@sitestreet, don't want to put you off reg refresh_token, it might be working as expected.. haven't tested it out yet.
Just read your message again, with regards to the flow, patrick's suggestion & screenshots here might be helpful, check it out! As well as @psweb's ones above!