New to Xano, but so far I'm impressed.
My understanding from the documentation and forum posts is that Xano that doesn't support Refresh Tokens natively, but it's possible to build your own.
I want to implement such in an app I'm working one.
I haven't implemented something like this before and want to make sure the workflow I've came up with passes a sanity check.
1. I've created a table called sessions that holds the session ID, email, session end, and the Refresh Token (using a password column)
2. When a user logins in the first time they are issued a Auth Token (1hr ttl) and Refresh Token (90day ttl).
3. When auth token is nearing expiration the app requests a new one using the Refresh Token. The stack on the API endpoint confirms the Refresh Token is valid before issuing a new auth token.
Thanks in advance for any advice provided.