Change how tokens are generated and re-generated during event time
JimTharioAmazon opened this issue · comments
Currently our process is idempotent in that once a token is generated for a request ID, that same token will be returned each time with the same claims and previous iat, nbf, and exp attributes.
We should change to storing only the claims including iat, nbf, and exp attributes in the table, and reusing those claims for a new token if one is requested for a specific request ID.