That message is the PSD2 / Strong Customer Authentication (SCA) re-consent window expiring, not an Invoice Ninja issue — under the European RTS on SCA, account-information providers like GoCardless/Nordigen can only hold a valid consent for ~90–180 days, so every AIS provider (Yodlee, Tink, Plaid, GoCardless) surfaces the same “feeds expired” message once that clock runs out.
“Re-authenticate” means going back through the bank consent screen you used at setup: it’s typically a re-consent rather than a full re-connect, and many banks let you re-use your existing login via an SCA step (push notification / app approval) instead of re-entering credentials from scratch. The transactions you already imported stay in place — only the live feed pauses until you re-consent.
One practical note: the 90-day clock is per-consent, so if you linked multiple banks on different dates they won’t all expire at the same time. And on the hosted plan, if no “connect” button is appearing when you need to re-authenticate, support can reset the GoCardless end-user agreement on the backend so you get a clean re-consent flow.