:construction: Set up first attempt at reissuing access token

backend/lib/routes/user/getaccess.js

             const token = await userService.createToken({
                 ...res,
                 // NOTE: Set Expiration Time for Access Token Here
-                expires: 60 * 2,
+                expires: Math.floor(Date.now() / 1000) + 60 * 2,
             })
             try {
                 const response = h.response({

backend/lib/routes/user/getsession.js

             const token = await userService.createToken({
                 ...res,
                 // NOTE: Set Expiration Time for Session Token Here
-                expires: 60 * 10,
+                expires: Math.floor(Date.now() / 1000) + 60 * 10,
             })
             try {
                 const response = h.response({

frontend/src/utils/db.js

             const res = await fetch(`${remote}${endpoint}`, header)
             const jsonRes = await res.json()
             if (!res.ok) {
+                // NOTE: Somewhat hacky workaround here to get auth working
                 if (res.status === 401) {
                     return { ...jsonRes.data, status: res.status }
                 } else {

frontend/src/views/OnboardingView.vue

         // since it has to be done on created() and every step after 6...
         sessionToken = this.grabStoredCookie('siimee_session')
         accessToken = this.grabStoredCookie('siimee_access')
+        // TODO: More graceful way of throwing exceptions if sessionData is not defined??
         try {
-            await this.verifySessionToken(sessionToken)
-            const sessionData = await this.verifyAccessToken(accessToken)
+            const sessionData = await this.verifyBothTokens(
+                sessionToken,
+                accessToken,
+            )
             await this.isEmailInRegistry(sessionData.payload.email)
             // TODO: Validate All routes hit by these methods using tokens in headers
             const userId = await this.grabUserIdByEmail(
                 cookieKey in cookies ? cookies[`${cookieKey}`] : undefined
             return cookieVal
         },
+        async verifyBothTokens(sessionToken, accessToken) {
+            const sessionTokenIsValid = await this.verifySessionToken(
+                sessionToken,
+            )
+            const accessTokenIsValid = await this.verifyAccessToken(accessToken)
+            if (
+                accessTokenIsValid.status === 401 &&
+                sessionTokenIsValid.status !== 401
+            ) {
+                console.warn(
+                    'WARNING :=> Access Token Expired, but Session Token Is Still Valid, reissuing Access Token...',
+                )
+                // NOTE: Whether to implement newSessionToken is unclear in notes,
+                // but without this, user session will expire in 10 minutes no matter what...
+                const newSessionToken =
+                    await this.authenticator.getSessionToken(
+                        sessionTokenIsValid.payload,
+                    )
+                const newAccessToken = await this.authenticator.getAccessToken(
+                    sessionTokenIsValid.payload,
+                )
+                sessionToken = newSessionToken
+                accessToken = newAccessToken
+                document.cookie = `siimee_access=${newSessionToken}; max-age=600; path=/; secure`
+                document.cookie = `siimee_access=${newAccessToken}; max-age=600; path=/; secure`
+                const newAccessTokenIsValid = await this.verifyAccessToken(
+                    newAccessToken,
+                )
+                return newAccessTokenIsValid
+            } else if (
+                accessTokenIsValid.status === 401 &&
+                sessionTokenIsValid.status === 401
+            ) {
+                sessionToken = null
+                accessToken = null
+                currentProfileId = null
+                throw new Error('Both Session and Access Token Are Expired!!')
+            } else return accessTokenIsValid
+        },
         async verifySessionToken(sessionToken) {
             if (!sessionToken) {
-                console.warn('WARNING :=> sessionToken is not defined')
+                return console.warn('WARNING :=> sessionToken is not defined')
             } else return await this.validateToken(sessionToken)
         },
         async verifyAccessToken(accessToken) {
             if (!accessToken) {
-                console.warn('WARNING :=> accessToken is not defined')
+                return console.warn('WARNING :=> accessToken is not defined')
             } else return await this.validateToken(accessToken)
         },
         async validateToken(token) {
             const validatedToken = await this.authenticator.validateSession(
                 token,
             )
-            // TODO: consolidate both verifyToken into verifyBothTokens() method
-            // and utilize presence of status to determine auth status
-            if (validatedToken.status) {
-                console.log('validatedToken.status :=>', validatedToken.status)
-            }
             if (validatedToken.error) {
                 throw new Error(validatedToken.error)
             } else {
                 await this.authenticator.checkIfEmailIsRegistered(email)
             if (!emailIsInRegistry) {
                 throw new Error('Email Is NOT in Registry!')
-            } else return emailIsInRegistry // true
+            } else return emailIsInRegistry
         },
         async grabUserIdByEmail(email) {
             const user = await fetchUserByEmail(email)
                         this.responses[this.responses.length - 1],
                         currentProfileId,
                     )
+                    try {
+                        this.verifyBothTokens(sessionToken, accessToken)
+                    } catch (err) {
+                        console.error('ERROR :=>', err)
+                        this.goToStep(0)
+                    }
                 }
                 if (k === 'aspects') return
             }