diff --git a/source/Libraries/Thinktecture.AuthorizationServer.OAuth2/Endpoints/AuthorizeController.cs b/source/Libraries/Thinktecture.AuthorizationServer.OAuth2/Endpoints/AuthorizeController.cs
index 9cb3c7e..e1e3179 100644
--- a/source/Libraries/Thinktecture.AuthorizationServer.OAuth2/Endpoints/AuthorizeController.cs
+++ b/source/Libraries/Thinktecture.AuthorizationServer.OAuth2/Endpoints/AuthorizeController.cs
@@ -77,6 +77,10 @@ public ActionResult Index(string appName, AuthorizeRequest request)
             }
 
             Tracing.Verbose("No consent configured for application/client");
+
+            
+            // workaround for bug #139
+            validatedRequest.RequestedRefreshTokenExpiration = DateTime.UtcNow.AddYears(50);
             return PerformGrant(validatedRequest);
         }