The payload we have has the following: - `sessionHandle`: A constant ID per session. -

userId

- `refreshTokenHash1`: a reference to this token's refresh token - `parentRefreshTokenHash1`: a reference to the refresh token that was used to create this access token. - `userData`: Any JSON object that you wish to provide - `antiCsrfToken`: used to check if the incoming anti-csrf token is valid or not - `expiryTime`: in Milliseconds - `timeCreated`: in Milliseconds - `lmrt`: Used to check when the user had last manually authenticated