A login-handoff request as held by the store.
Both tokens are stored hashed (token_hash for the QR-borne request token, login_hash for the credential minted at approval); the plain values never touch the store.
token_hash
login_hash
@type state() :: :pending | :approved
@type t() :: %Keyfob.Request{ expires_at: integer(), inserted_at: integer(), login_expires_at: integer() | nil, login_hash: binary() | nil, meta: map(), state: state(), token_hash: binary(), user_ref: term() | nil }