Hey,

You can checkout our solution that implements this for production use! It also takes care of many edge cases and network failure issues. Plus it has the benefit of detecting access/refresh token theft (and we are the only ones to do this!)

Have a look at the solution at https://supertokens.io

You can also learn more about the solution via this blog: https://supertokens.io/blog/the-best-way-to-securely-manage-user-sessions