validate(); // We're can't invalidate access token because it's not stored in our database return true; } }