A computer-implemented method for a token-based authorization in a data processing environment comprising a user system, an application server and an authorization server may be provided. The method comprises accessing the application via the user agent, sending an access token and a refresh token from the authorization server to the application, triggering an execution of the service providing the long-running operation by the application. The triggering comprises requesting and receiving a transferable refresh token, starting an execution of the service providing the long-running operation by passing the transferable refresh token together with the identifier from the application to the service providing the long-running operation, passing the transferable refresh token from the long-running service to the authorization server, receiving an access and refresh token, and continuing the long running service.