|
|
|
|
|
|
by brabel
615 days ago
|
|
|
> when user token is almost expired - instead of generating new security token Lucia suggesting just to extend life of existing one The link you posted shows code to extend the session, which is common practice (it's called rolling session), not to "extend" the token's life (which should be impossible, a token needs to be immutable in the first place, which is why refreshing a token gives you a new token instead of mutating the original). |
|
|