Refresh tokens are generally needed in offline scenarios like PWA or client which are able to "long live" and may have their token expired. Unless you have such a scenario, there is no need to deal with refresh token. MSAL will take care of most the flows for you.