minus-squareOrygin@sh.itjust.workstoCybersecurity@sh.itjust.works•Do extremely short credential lifetimes actually help security?linkfedilinkEnglisharrow-up4·2 days agoThe validity of the auth token could be 20 minutes, but the refresh token should have a longer validity time. Exactly to prevent this logging in multiple times per day. linkfedilink
The validity of the auth token could be 20 minutes, but the refresh token should have a longer validity time. Exactly to prevent this logging in multiple times per day.