• A new "resume token" JWT should be sent as a reply to a new ResumeToken RPC
  • Only contains the peer_id for now
  • Clients that support it can hit it periodically to get a refreshed token
  • Tokens should last for 24h and clients should re-request it 1 hour before expiry
  • Clients should only store the tokens in memory and not on disk
• When clients want to reconnect, they specify it as a query param and they'll persist their peer ID and tunnels

Relates to #13726