Fetch attachment returns an HTML login page instead of the attachment or 401

I have an electron app where users login in to their JIRA accounts using OAuth 2.0

I create a get request to /rest/api/2/search with Bearer authorization to get the issue list, get the attachment content url from the issue metadata and make a get request to /secure/attachment/{id} (tried both with/without adding the token)

Sometimes instead of redirection to attachment file I get an redirection to a login page
I think it could be because of expiration of cloud.session.token cookie (the expiry date is setting to now + 1 month)
If I delete cloud.session.token manually and try to make a request to attachment file I get the same result (redirection to a login page)

Thank you.