I am working on an angularjs application that does not have any session management in place. The application is using Spring REST to expose the APIs. This application is using OpenID connect for authentication. We are not doing any authorization with Okta.
Problem: For each request, we are sending ID Token to okta so that it can get validated. Now the challenge is ID token expires in 1 hour. I am trying to fetch new ID token and it refreshes the user page. I have already used no-prompt and thus it is not asking user to login again. However, due to refresh, user loses the work he/she was doing.
May you please suggest an approach that can work in situation when there is no session management and Okta is getting used only from Authentication purpose.