NextAuth jwt callback tries to get new access tokens also on public pages

Question

NextAuth jwt callback tries to get new access tokens also on public pages

Opened this issue 6 months ago · 0 comments

If the user is not logged in and visits a public page, for example /about, there is an unnecessary and failing call to https://oauth2.googleapis.com/token, which shows in the logs

!response.ok {
  error: 'invalid_grant',
  error_description: 'Token has been expired or revoked.'
} 400 Bad Request

Does not affect functionality, but it's an unnecessary API call on each page load