Session and token handling
When your client logs in using the userpass authentication method, it receives a token with a default lifetime of 15 minutes. It can be renewed to a maximum token lifetime of 24 hours.
Best practices for token renewal
Section titled “Best practices for token renewal”- Renew only when necessary: Renew the token only when needed to minimize active tokens and reduce security risks.
- Renewal duration: Specify the exact time required for upcoming operations when renewing the token. Token revocation:
- Revoke unused tokens: Revoke tokens immediately if they are no longer needed to maintain security.
Implementation tips
Section titled “Implementation tips”- Automate token management: Use automated checks to handle token renewals and revocations in your client.
- Error handling: Ensure your application handles token expiration gracefully, prompting re-authentication if necessary.