Signs a short-lived access token (15 minutes).
The resulting token is returned in the login/register response body and attached to every API request as Authorization: Bearer <token>. It is never persisted — it lives in memory (Zustand store) only.
Authorization: Bearer <token>
The user identity to encode
Signed JWT string valid for 15 minutes
const token = signAccessToken({ userId: user.id, email: user.email }) Copy
const token = signAccessToken({ userId: user.id, email: user.email })
Signs a short-lived access token (15 minutes).
The resulting token is returned in the login/register response body and attached to every API request as
Authorization: Bearer <token>. It is never persisted — it lives in memory (Zustand store) only.