The partner must provide a web service where Marfeel can verify valid tokens that we receive when a request to paid content is sent, obtained via the authentication process. 

Marfeel implements the necessary logic to properly consume this service. 

The purpose of this step is to avoid a hijacking attack whereby an attacker could simply reuse authentication tokens.