Closed
Description
Hi, I'm David
I read almost discussion about refresh token. It feel it has some problem.
At now, I have a some question of re-issue token.
Also, I got a principle the issued token do not destory.
If the situation is about log-out, sign out or prolong expire day, etc.., then how about re issue of token from web server? Just re-issue
Because I heard JWT does not have token-store. And issued token dose not destory. I think just the token will re-issue for log-in/out and just issued token string remove for drop out.
Is it having a some problem???
Metadata
Metadata
Assignees
Labels
No labels