Closed vickychijwani closed 8 years ago
Right now we're relying on the expiration time, which is not a good idea for 2 reasons:
The issue should prove simple to reproduce, there are 3 cases:
In this case, the refresh token can be used to renew the access token and proceed with no impact.
hasAccessTokenExpired
In this case, the password can be used to generate a new token pair and proceed with no impact.
Right now we're relying on the expiration time, which is not a good idea for 2 reasons:
The issue should prove simple to reproduce, there are 3 cases:
Case 1
In this case, the refresh token can be used to renew the access token and proceed with no impact.
Case 2
hasAccessTokenExpired
In this case, the password can be used to generate a new token pair and proceed with no impact.
Case 3
In this case, the password can be used to generate a new token pair and proceed with no impact.