Regarding the limitations of the App Router. The UserProvider will check the login state of the user. To do this, it makes a call to the api route /api/auth/me.
Now, does this action refresh the session expiration?
If yes, I assume there is no action needed to extend the session if you are okay with the session being extended only once for every visit, correct?