This is relatively minor and likely indicative of my lack of understanding, but the authorization and refresh tokens that are returned by the boilerplate, are these the actual tokens (access_token, refresh_token) that the provider has returned or representative of them?
Relatedly, are you overriding the Auth Token expiration time? Say if you customized the code to authorize with Spotify who returns an access_token and a refresh_token and the expiration on the access_token is 3600s, are you arbitrarily setting the new expiration (15s) or does that mean we can also extend it?
This is relatively minor and likely indicative of my lack of understanding, but the authorization and refresh tokens that are returned by the boilerplate, are these the actual tokens (access_token, refresh_token) that the provider has returned or representative of them?
Relatedly, are you overriding the Auth Token expiration time? Say if you customized the code to authorize with Spotify who returns an access_token and a refresh_token and the expiration on the access_token is 3600s, are you arbitrarily setting the new expiration (15s) or does that mean we can also extend it?
Thanks for any guidance in this matter