@danabra.mov Is it possible to make non-confidential OAuth (like SPA webapp or a mobile app that do not have a token-managing backend) suck as little as possible, i.e. not log you out after a few days?…

(note: I haven’t really dipped my toes into OAuth yet, just basing this on what I’m hearing here)