Adil
DevBest CEO
- May 28, 2011
- 1,278
- 718
I am using Google Cloud Endpoints for my API but I'd like to use something a bit more 'generic' (GCE only allows for authenticating against google accounts). I've decided upon using a token to authenticate users.
My question is: should I use a system in which tokens expire after a certain amount of time? Or should tokens be permanent?
My question is: should I use a system in which tokens expire after a certain amount of time? Or should tokens be permanent?