Session Management

We use a secure session management system based on JSON Web Tokens (JWT).

How it works

When a user logs in, they receive an access token and a refresh token. The access token is short-lived (e.g., 15 minutes), while the refresh token is long-lived (e.g., 30 days).

Token Storage

Tokens are stored securely on the device using expo-secure-store.

import * as SecureStore from 'expo-secure-store';

async function saveToken(key, value) {
await SecureStore.setItemAsync(key, value);
}