We currently implementing Silent Authentication on our Web App (Single App - React).
The documentation is very clear about that. The right way seems to be using the method checkSession() for having a new valid access Token.
However, it also seems that there is a limit between two calls for this method, actually 15 minutes.
Does it means that :
- if the token life time is less than 15 minutes, can we block the access to the API for everyone ?
- if someone create a loop on this method can he block the access to the API for everyone ?
Thanks for answers !