Reputation: 838
expires_in value in answer wso2 api manager to authorize request
I have configured AccessTokenDefaultValidityPeriod with the value 680400. Configured so, the acces_token is in fact valid for a week which is exactly what I need. But when I make a request:
https://server01:9443/oauth2/authorize
there is a redirect to
https://server01/src-osdk/#access_token=28352467a413806ccb5ee8d4ccc0f382&state=2cea70c1-b0d9-4547-ab36-f1bd411698b2&expires_in=3600.
As you can see, expires_in=3600 while I expected it to be the same as it is set in the configuration above. The client library treats this value as the token validity time and behaves accordingly thus discregarding that the access_token will be valid for a much longer time.
In case I do not misinterpret the meaning of the "expires_in" parameter, this looks like a bug.
P.S. I use wso2 api manager - not identity server
Upvotes: 0
Views: 430
Answers (1)
Reputation: 514
Please use the 'UserAccessTokenDefaultValidityPeriod' configuration element in identity.xml to change user token expiration time,instead 'AccessTokenDefaultValidityPeriod' element.
Thanks;
/Lalaji
Upvotes: 1
Related Questions
- WSO2 AM access token expires after one access time
- Token Expiry after 15 minutes using WSO2 Identity Server
- Handle Token Expiration in WSO2
- wso2-am 2.1.0 jwt token expiration
- MSF4J: wso2 access service provider User Access Token Expiry Time
- WSO2 APIM-2.1.0 Get accessToken which has infinity expiration time via /token api
- How to make Wso2 API Manager Access token expire time to infinte?
- Wso2 access token time
- Wso2 token expires
- WSO2 API Manager API authentication failure