Hi there,
I'm guessing you've stored a token for a user in the DB, which means it's
more "permanent" than the room session. We only allow tokens to work for the
duration of a room session, which is defined as the time between the first
user entering a room to around 5 minutes after the last user leaves the
room.
Essentially, the workflow that tends to happen is that a user wants to
enter a room, makes a request to you, you generate a new authToken, and the
client logs in. Tokens aren't especially storable.
hope that helps
nigel