This is a contributors guide and NOT a user guide. Please visit these docs if you are using or evaluating SuperTokens.
This is just a proposal so far, it hasn't been accepted and needs further discussion.
We need to decide where/how a user can disable the refresh token flow (offline access) for a particular client
- Disabled by overrides on the BE
- Defined during client creation
Chosen option: Disabled by overrides on the BE
- We can add this switch later if required