Is there a way to check if a user has previously authorized your app, without kraken issuing a new token?

This would possibly cause security concerns as it doesn’t follow the recommendations in section 10.2 of the OAuth 2 spec.