Reputation: 2325
Handle Token Expiration in WSO2
We are using wso2 in the backend to generate token and validating each service against the token. We set the default expiration time is 2 Hrs. My Question is-
If the user is continuously using the application without any idle time and in between token get expired, how we can handle it(Maybe we can use refresh token, however- the documentation says we can use a refresh token only once). Is there any way to handle token with idle time? Or do you have a better idea on this?
Upvotes: 1
Views: 171
Answers (1)
Reputation: 12513
Every time you refresh an access token using the refresh grant type, you get a new refresh token too which you can use for the next time.
For some reason, if you want to keep the same refresh token, you can change the <RenewRefreshTokenForRefreshGrant> configuration to false in repository/conf/identity/identity.xml file.
Upvotes: 1
Related Questions
- WSO2 AM access token expires after one access time
- Previous token is revoked when token endpoint is called even before token expiry
- Token Expiry after 15 minutes using WSO2 Identity Server
- wso2-am 2.1.0 jwt token expiration
- MSF4J: wso2 access service provider User Access Token Expiry Time
- WSO2 APIM-2.1.0 Get accessToken which has infinity expiration time via /token api
- How to make Wso2 API Manager Access token expire time to infinte?
- Wso2 token expires
- Access/Refresh Token Usage
- expires_in value in answer wso2 api manager to authorize request