I notice there are a lot of hashed token being saved and do not expired.
I tried to call api to logout but it did not clear the token in the database, also tried to set Login Expiration in Days to 10 days. But the token remains.
Any suggestions or idea how to remove the old hashed token?
You would likely have to write a mongo query to unset them all. I’ve seen a few floating around… but since this is on the user collection you should definitely back up and tread very carefully.
I’m guessing with some sort of mongo $set you could update and clear out resumeTokens.
Do you do a lot of login via api or any reason for high number of tokens?