Generates a cryptographically random opaque token (80 hex characters).
Available as an alternative to JWT refresh tokens — an opaque token has no
decodable payload and must be looked up in the database on every use.
Currently unused but available for future use cases such as email verification
or password reset links.
Generates a cryptographically random opaque token (80 hex characters).
Available as an alternative to JWT refresh tokens — an opaque token has no decodable payload and must be looked up in the database on every use. Currently unused but available for future use cases such as email verification or password reset links.