diff --git a/.changeset/fix-refresh-token-loop.md b/.changeset/fix-refresh-token-loop.md
new file mode 100644
index 000000000..4b39e25ab
--- /dev/null
+++ b/.changeset/fix-refresh-token-loop.md
@@ -0,0 +1,6 @@
+---
+'@asgardeo/browser': patch
+'@asgardeo/react': patch
+---
+
+Fix infinite loop of refresh grant requests when the refresh token is expired or revoked
diff --git a/packages/browser/src/__legacy__/helpers/authentication-helper.ts b/packages/browser/src/__legacy__/helpers/authentication-helper.ts
index 995f80799..c2592383b 100644
--- a/packages/browser/src/__legacy__/helpers/authentication-helper.ts
+++ b/packages/browser/src/__legacy__/helpers/authentication-helper.ts
@@ -65,6 +65,7 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
   protected _spaHelper: SPAHelper<T>;
   protected _instanceId: number;
   protected _isTokenRefreshing: boolean;
+  protected _hasRefreshFailed: boolean;
 
   public constructor(authClient: AsgardeoAuthClient<T>, spaHelper: SPAHelper<T>) {
     this._authenticationClient = authClient;
@@ -72,6 +73,11 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
     this._spaHelper = spaHelper;
     this._instanceId = this._authenticationClient.getInstanceId();
     this._isTokenRefreshing = false;
+    this._hasRefreshFailed = false;
+  }
+
+  public hasRefreshFailed(): boolean {
+    return this._hasRefreshFailed;
   }
 
   public enableHttpHandler(httpClient: HttpClient): void {
@@ -180,6 +186,7 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
       if (customGrantConfig) {
         await this.exchangeToken(customGrantConfig, enableRetrievingSignOutURLFromSession);
       }
+      this._hasRefreshFailed = false;
       this._spaHelper.refreshAccessTokenAutomatically(this);
 
       return this._authenticationClient.getUser();
@@ -481,6 +488,7 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
       return this._authenticationClient
         .requestAccessToken(authorizationCode, sessionState ?? '', state ?? '', undefined, tokenRequestConfig)
         .then(async () => {
+          this._hasRefreshFailed = false;
           // Disable this temporarily
           /* if (config.storage === Storage.BrowserMemory) {
                         SPAUtils.setSignOutURL(await _authenticationClient.getSignOutUrl());
@@ -717,6 +725,13 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
       return this._authenticationClient.isSignedIn();
     }
 
+    // Skip the refresh attempt if a previous one already failed with this session's
+    // tokens — avoids an infinite loop of refresh grant requests when the refresh
+    // token is expired or revoked (flag is cleared on fresh sign-in or successful refresh).
+    if (this._hasRefreshFailed) {
+      return false;
+    }
+
     // Token may be expired — attempt a silent refresh before giving up.
     try {
       this._isTokenRefreshing = true;
@@ -726,6 +741,7 @@ export class AuthenticationHelper<T extends MainThreadClientConfig | WebWorkerCl
       return true;
     } catch {
       this._isTokenRefreshing = false;
+      this._hasRefreshFailed = true;
 
       return false;
     }
diff --git a/packages/browser/src/__legacy__/helpers/spa-helper.ts b/packages/browser/src/__legacy__/helpers/spa-helper.ts
index e4c63e0a4..3b4aa4163 100644
--- a/packages/browser/src/__legacy__/helpers/spa-helper.ts
+++ b/packages/browser/src/__legacy__/helpers/spa-helper.ts
@@ -54,6 +54,7 @@ export class SPAHelper<T extends MainThreadClientConfig | WebWorkerClientConfig>
 
       if (timeUntilRefresh <= 0) {
         if (this._isTokenRefreshLoading) return;
+        if (authenticationHelper.hasRefreshFailed()) return;
 
         this._isTokenRefreshLoading = true;
         try {
diff --git a/packages/react/src/contexts/Asgardeo/AsgardeoProvider.tsx b/packages/react/src/contexts/Asgardeo/AsgardeoProvider.tsx
index fe0f132d5..761b99ac2 100644
--- a/packages/react/src/contexts/Asgardeo/AsgardeoProvider.tsx
+++ b/packages/react/src/contexts/Asgardeo/AsgardeoProvider.tsx
@@ -388,6 +388,23 @@ const AsgardeoProvider: FC<PropsWithChildren<AsgardeoProviderProps>> = ({
     };
   }, [asgardeo]);
 
+  // When the refresh token is expired or revoked, the browser SDK posts a
+  // 'refresh-access-token-error' message. Sync the React context so components
+  // stop calling auth methods and the user is redirected to sign in again.
+  useEffect(() => {
+    const handleRefreshTokenError = (event: MessageEvent): void => {
+      if (event?.data?.type === 'refresh-access-token-error') {
+        setIsSignedInSync(false);
+      }
+    };
+
+    window.addEventListener('message', handleRefreshTokenError);
+
+    return (): void => {
+      window.removeEventListener('message', handleRefreshTokenError);
+    };
+  }, []);
+
   useEffect(() => {
     (async (): Promise<void> => {
       try {