One thing that comes to mind when using access tokens to secure a web api is what do you do when the token expires? Do you ask the user for credentials again? That’s not really a good option. This blog post is about using refresh tokens to solve this problem. Specifically in ASP.NET Core Web […]
Read more