Should revoke refress token when get new access token?

#node #javascript #help

I have API get new access token from refresh token but i wonder that: should revoke refresh token and generate new refresh token when getting new access.

Case 1: api/refresh token => {new_access_token,new_refresh_token} (refresh_token revoked)

Case 2: api/refresh token => {access_token} (refresh_token not revoke)

What is bestpractive, im using Nestjs

Top comments (0)

20 TypeScript Tricks Every Developer Should Know 🚀

Jagroop Singh - Oct 23

Congrats to the Wix Studio Challenge: Community Edition Winner!

dev.to staff - Oct 29

WEB3 BetCandidate

Hígor da Silva Flores - Oct 4

I made a simple vscode extension for json comparison

Farzan - Oct 4

DEV Community