dotnet-6-jwt-refresh-tokens-api icon indicating copy to clipboard operation
dotnet-6-jwt-refresh-tokens-api copied to clipboard

Published 20 hours ago verified publisher icon cornflourblue

RefreshTokens are generated too often

Open sherlock1982 opened this issue 10 months ago • 0 comments

Very nice and neat example, thanks!

The only thing I want to notice is that normally refresh happens every hour (in this example 15 minutes). There's no need to generate a new token on each refresh as there will be just too many of them.

Maybe better to update existing token with some fields like Updated and UpdatedByIp ? Initially set together with Created and CreatedByIp. Because if the request is valid it is still ok to reuse the same record.

sherlock1982 avatar Apr 15 '24 16:04 sherlock1982