Comment 11 for bug 1215627

As a user, you are given a token by the system that you can authenticate, with a timestamp that tells you when it expires. Then it is up to you as the user to use that token till it expires. If you continue to use that token beyond the expiration timestamps then its a user error.

I would suggest that it might be user friendly to generate a new token during a create token requests that would have otherwise returned the current token when the current token is close to expiry.