Thank you Dan for your question/answer.
I was wondering how to maintain a user's session (i.e.: "remember me") as long as the user comes back frequently?
e.g: if the user is inactive for > 30 days (lifetime of refresh token), the user would have to login again.
but if the user comes back every few days, ideally we do not want to end the session every 30 days for UX reasons.
What is the recommended way of handling that?
Note: Sorry, I am quite new to JWT, I am still trying to understand how it all works.