docs
  1. Checkout Guide
  2. Authentication & Accounts
  3. Authentication API
  4. Token Management
  5. Configure

Configure

Token Life Time

In SCAYLE, the lifetime of access tokens and refresh tokens determines how long a user stays authenticated. These settings are crucial for balancing user experience and security.

Token lifetime is tied to the specific Authentication API client used in your integration. Each API client can have its own token lifetime configuration, allowing flexible control across different applications or services.

Please refer to the Token Management Guide for more information on default life time and limitations. \

Best-Practise:

  • Use shorter access token lifetimes for sensitive applications.
  • Use longer refresh token lifetimes for seamless user experiences.
  • Avoid setting both tokens to their maximum limits unless there’s a clear business requirement.
  • Regularly review and adjust token policies based on user behavior and security posture.\

How to Configure:

This can be done in the SCAYLE Panel under Shops ➜ Storefront API Keys ➜ Customer Authentication API Keys

Configure Token Lifetime

Previous
Integrate
Next up
Single Sign-On