1) Because the access token is matched with the next token (they are connected) next token is only able to generate new access token based on whether both are the same as those issued. Eg on login, Access token can be the

key

and Next token can be the

value

in redis