You should use the Update-Client-Auth response header, check chrometophone source
for an example. It requires no user intervention.
I don't think there is a documented 'max' or average time limit for ClientLogin tokens - it's
better to not assume anything.
Costin
Thanks.
ZZ