ASVS Requirement 10.4.8

Description

Verify that refresh tokens have an absolute expiration, including if sliding refresh token expiration is applied.