|
|
|
|
|
|
by numbsafari
1257 days ago
|
|
|
session vs refresh… you kill the session token and require a refresh. Can be sometimes be transparent, but may cause a re-authentication using the second factor with an indicator to the user that their previous session was killed due to use by a different IP. If you are concerned about stable IPs, use a proper VPN or bastion setup. |
|
|