Open monicavalluri opened 4 years ago
@patmagee's comment: Also related to this., we should figure out the relationship between refresh tokens and the cart. If a user gets a refresh token after being authorized for specific resources, no access tokens generated with the refresh work with the cart endpoint. Should this be the desired behavior?
When authorizing a view, the cart token that is given back has a default TTL of 3600 Seconds, however, the cart itself only is valid for 300 seconds or so.
The user would expect:
This is related to #23