shakedmanes
commented
4 years ago By that way, each service-provider can use a very huge number of allowed tokens and token life-time range which will endanger the security of the service-provider, and therefore the clients which are using it.
If it will make your life easier, I can expand the token life-time for number of weeks.
A service-providers should be able to configure the token life-time and the number of allowed tokens in that frame of time by himself.