Hey, I'm building a React Native app and I'm noticing that some of my users have multiple active sessions with non-revoked refresh tokens, even though they never signed out and are on a single device with a single install.
My client config:
export const supabase = createClient(supabaseUrl, supabaseAnonKey, {
auth: {
storage: AsyncStorage,
autoRefreshToken: true,
persistSession: true,
detectSessionInUrl: false,
},
})
Is this expected behavior? What can cause a new session to be created aside from an explicit signIn() call?
The user is experiencing an issue where multiple active sessions with non-revoked refresh tokens are appearing in their React Native app, even though users are on a single device. They are seeking clarification on whether this behavior is expected and what might cause new sessions to be created aside from explicit sign-in calls.
Do you have any part of your code doing anything with onAuthStatChange https://supabase.com/docs/reference/javascript/auth-onauthstatechange