I'm new to JWT, but it looks better than just using the same API token forever. I know the token expires after a day (by default), but does that mean the user will have to re-login again? this coul...