Given an authentic user
and a successful external validation
When the user attempts to sign in
Then the user should be issued an encrypted JSON Web Token
and the user should be signed in
and the token expiration should be set to a reasonable time period
and the token should refresh itself if the user is still active
Given an authentic user and a successful external validation When the user attempts to sign in Then the user should be issued an encrypted JSON Web Token and the user should be signed in and the token expiration should be set to a reasonable time period and the token should refresh itself if the user is still active