Sadly you do need to update it quite often. A small script can act as a helper, this is what I have used: rcc cloud authorize -w MY_WORKSPACE | python -c 'import sys, json;print(json.load(sys.stdin)["token"]);'
And maybe even plug it into env.json with a script as well