-
Module keeps an authorization header even when it's not valid anymore. Since storage lifespan is pretty short on the website (10 minutes and can't be refreshed), setting STATE_DURATION in the browser to match website behavior and do a new login if needed.
aa688373