android.permission.ACCESS_FINE_LOCATION permission is already merged to your Manifest but you have to ask for the Location permission.
The AuthToken gets refreshed 7 days before it expires on server side.
When the user enters the app and the AuthToken is expired, we can not refresh the AuthToken.
The client must login again then. The SDK will signal this with UserManager.Status.LoggingOut which can be observed via UserManager.getStatusLiveData().