Hi. It depends on how you use the token really. Usually, the client SDK does this for you automatically, and you don’t have to think about it. But if you’re calling
getIdToken() explicitly, and use the resulting token to make your own API calls, then you have to be aware of the token becoming invalid, and you may have to take action to refresh it.