OnTime Backend handles user identity, schedules, preparation data, alarms, and account preferences for the OnTime application.
User: A person who owns OnTime account data and authenticates to use the app. Avoid: Account, member
User Session: An authenticated app session for a User. Avoid: Device login, token slot
Active Session: The single User Session currently allowed to access protected OnTime APIs. Avoid: Current token, latest device
- A User has at most one Active Session.
- A User Session belongs to exactly one User.
Dev: "If a User signs in on a second phone, do both phones keep an Active Session?" Domain expert: "No. The second sign-in becomes the Active Session, and the previous User Session is no longer allowed to use protected APIs."
- "device login" was used to mean both a physical device and an authenticated User Session. Resolved: the login limit applies to User Sessions, not to registered alarm devices.