Open
Description
The current implementation uses a non-expiring bearer token.
Possible improvements:
Add an expire data to the bearer token - which forces users to login again after a certain period of inactivity (for example 14 days)
Use JWT tokens:
resources:
https://huma.rocks/how-to/oauth2-jwt/
https://dev.to/leapcell/jwt-in-action-secure-authentication-authorization-in-go-jde/