Let's say we have the following scenario: A user login with correct credentials and he gets a token with expiration date. After some time
(lets say 30 minutes) the token is expired and the user has to give again his credentials to be authorized. Our Goal is to not force the user give his username and password again.
How would you handle this problem? 😉