Sometimes I have a error in my logs about toke series: "Querying token for series 'qF0PD5V64BRvlxTHU577ZQ==' returned more than one value. Series should be unique"
Looks like series generator generates not unique values and it causes some problems later.
Also the class logic is not clear for me.
1. In case of broken tokens they are never removed from the database because JdbcTokenRepositoryImpl returns null but PersistentTokenBasedRememberMeServices does nothing in this case:
2. I have a lot browsers. At least 3 but when I have incorrect token in one browser, for example, all other marked as broken:
Why all my tokens are removed if only one is broken?
3. If token is expired it's not removed from DB:
At this moment my database has a lot of broken tokens.