So you can set the refresh token's lifetime to be very high and then as long as the user is active during that time, they will not be logged out (it's a rolling window style expiration)