Bug #12119: Token endpoint issuing new access tokens before expiration - product-uem 6.3.0 GA - Entgra.io

Actions

Copy link

Bug #12119

closed

Token endpoint issuing new access tokens before expiration

Added by Navod Zoysa about 1 month ago. Updated 24 days ago.

Status:

Closed

Priority:

High

Assignee:

Rajitha Kumara

Start date:

22/10/2024

Due date:

% Done:

Estimated time:

Device Type:

Component:

Type:

Platform

Description

Environment details
620 server

Prerequisites
None

Steps
1. Register OAuth app
2. Generate access token
3. Call the same token endpoint again

Description
Previously when calling the token endpoint if an access token was already generated previously it will send the same until it has expired but now its generating a new access token each time the token endpoint is called.

Result
New access tokens are generated each time the token endpoint is called

Actions

Copy link

Updated by Rajitha Kumara 24 days ago

Status changed from New to Closed
Assignee set to Rajitha Kumara

Findings¶

According to the wso2 documentation, the self contained access tokens(JWTs), which by default renew access tokens for every request. However for opaque codes this behavior can be configured through following toml config.

[oauth.token_renewal] renew_access_token_per_request = true

source¶

https://is.docs.wso2.com/en/5.11.0/learn/issuing-new-tokens-per-request/

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

PRODUCT IOTS » product-uem 6.3.0 GA

Custom queries

Bug #12119

Token endpoint issuing new access tokens before expiration

Updated by Rajitha Kumara 24 days ago

Findings¶

source¶