Auto logout if access token is expired, or retrieve another if refresh token is provided

martini-contrib / oauth2

[not maintained] Allows your Martini application to support user login via an OAuth 2.0 backend.

Apache License 2.0

125 stars 47 forks source link

Auto logout if access token is expired, or retrieve another if refresh token is provided #4

Closed rakyll closed 10 years ago

rakyll commented 10 years ago

Transport implementation provided by the oauth package retrieves a new access token if a refresh token is provided. It may be not a good idea to do it on the auth handler.

User could be logged out if the access token is expired and there are no refresh tokens.