A wider issue relating to ral-facilities/ldap-jwt-auth#295. If we have to revoke access for anyone the refresh token lasts up to week so at the moment they would remain admin.

This is believed to be the cause of....

As well as the context not updating the users token correctly

Originally posted by @joelvdavies in #1518 (comment)