Idan

We can add 'CreatedByRefreshToken' property to the refresh token entity which contains the refresh token which created the current one, and when logging out revoke all the related tokens recursively....

> Hi @idan-h, > > That is a great solution to the multi-user problem. I have reopened this issue so that when I update the library I will implement that...

Also, I noticed there is no check if the roles are valid for the user? From what I have seen, a user can invite another user with app admin role?...

> Hi @idan-h, > > > I noticed there is no check if the roles are valid for the user > > That isn't correct. This section in the [`InviteNewUserService`](https://github.com/JonPSmith/AuthPermissions.AspNetCore/blob/main/AuthPermissions.SupportCode/AddUsersServices/InviteNewUserService.cs#L117L127)...

Is the memory leak on the server or the client side?

> Hi @idan-h, > > I'm working on the next release of the AuthP and I looked this JWT refresh token with two logins. My search hasn't found anyone who...

Hey, what do you mean by "didn't include any code to set the expiration"? I Added an option to add expiration time to the method `CreateInviteUserToJoinAsync` by adding a new...

If you want to change the current dto instead of what I did it is fine by me, but I think that the expiration option is a must in this...

> > Hey, what do you mean by "didn't include any code to set the expiration"? > > Sorry, you didn't create a **frontend** way to set the expiration time....

> Rediet Zewdu asked if he could create a Blazor web assembly that uses AuthP library. The answer is no for the following reasons. > > - Blazor web assembly...