rest - RESTful API and separate web application acting as client; do i have validate the token received during login on every page load? -

i aware on every get, post, put, delete made client (separate web application) should provide token server part of authentication.

my question when user logs in gets token, have send token on every page load? instance in protected html page

if api trully restful, yes, have validate token on each request. reason simple: there no prior state relate to, hence stateless nature of restful apis.