1, check whether the accesstoken has expired.
When opening the startup interface, send a confirmation message to confirm whether the accesstoken has expired.
2. If it expires, confirm other operations to extend the time.
If it expires, jump to the login interface, or gesture, fingerprint unlock and ask him to confirm the extension of accesstoken time.
3. If there is no expired server, please extend the expiration time.
If it doesn't expire, the server should extend the expiration time. If there are security requirements, it can be unlocked by gesture and then extended.
4. Failure of verification shall be treated as response.
When requesting at ordinary times, if the accesstoken expires, the interface player will use httpcode to tell you that the verification is invalid, such as returning a response with the status of 40 1. You can do your own processing according to this response, such as logging in again or unlocking by gesture.
If there is no requirement for information security, it will be out of date.
For example, if your application has no requirements for information security, then it is only a client of content. You can extend or not extend the expiration time of the accesstoken.
AccessTokens is a concept of Windows operating system security.