Hi,
If i understand correctly, the 'User sign-in frequency' implementation is app dependent and will only be enforced if the app was designed to do so, Is that correct?
If true, Can someone please guide me to documentation on how the 'User sign-in frequency' should be implemented by apps using the Oauth protocol ? I didn't see any flag in the Tokens that can indicate the 'User sign-in frequency' time and the Refresh tokens are valid for much longer than 1 hour(my CA settings), or did i miss something?
Thank You.