The access token doesn't expire. It's also specific for the user. There is no reason for you to get rid of it. You should store it with a relation to the username. The user should not be forced to re-allow every session.
On Oct 21, 2009, at 7:44 PM, shawninreach <shawninre...@gmail.com> wrote: > > Im a little confused on why some people are saying you want to store > the access token after you get it. Dont you just want to keep it in > the session until the session expires or the user clears cookies? I > understand how to use the access token, im just confused on after the > session is expired your going to need to make the user click "I Allow" > later again and theres nothing that can be done about that and you > request new tokens so why store them in the database at all. Basically > im just trying to understand this process a bit more so I can safely > store only what I absolutely need to. Thanks guys for the help!