I’ve read it over a couple times. Maybe I can be more specific and someone can point out my misunderstanding?
I’ve logged into my native app, I now have a Kratos session token. I send a request to my API using the session token. That API then takes the token and does what to confirm validity before responding?