Implement Refresh Token to receive JWT Token - security

Question

Implement Refresh Token to receive JWT Token - security

gabrielhicks opened this issue 4 years ago · 0 comments

Instead of storing the access token which only has a timeout and is irrevocable in localStorage, a shorter duration refresh token could add a layer of security and allow hacked accounts to be recovered more quickly