Hi. I'm new here.. and I want to start off with a quick problem i'v been having and also wonder how many other people have this problem and how they go about solving it.
There are TONS of ways to do session management.. should I use one long lived session, should I use refresh tokens? If yes, then should the refresh tokens change? If we do not change them, then isn't that sort of a security problem..? Happy to chat about this :)