after doing the authentication with twitch, I keep the access_token in my cookies. But, how should I check that when moving between private routes the user is authenticated and therefore has a valid token ?.
Should I use a middleware on the client and within call the “validate” of twitch? I mean this:
curl -H "Authorization: OAuth <access token>" https://id.twitch.tv/oauth2/validate
The client is made with Vue.js
My second question is: validate request has rate limit?