Unofficial Content

Configure the time in minutes that the State will remain valid when a client authenticates using OAuth 2.0 to an Identity Provider (IDP).

Description

"Timeout to Finish OAuth Authentication (state) Using an IDP (minutes)" (&GAMRepository.TimeoutToFinishOAuthAuthenticationUsingIDP) is a GAM Repository property that allows to configure the time in minutes that the State will remain valid when a client authenticates using OAuth 2.0 to an Identity Provider (IDP).

This property it can't be 0, by default, this property is set to 15 minutes.

If a specific time is set for "Timeout to Finish OAuth Authentication (state) Using an IDP (minutes)" property in the Client repository configuration, and the User does not complete his credentials in the stipulated time when he arrives at the Identity Provider, he will be redirected to his login object (the client's) with the error: GAM531 “State Expired”, and he will have to log in again.
In cases where a specific value is setted for this property in the Identity Provider repository configuration, and when the user is redirected to complete his credentials in the IDP, he will be redirected to his login object with the error: GAM533 “State IDP Expired”.

Example

The way to use it in GeneXus code (by using the GAM API) is the following:

&GAMRepository.TimeoutToFinishOAuthAuthenticationUsingIDP = 15 //Minutes

Availability

Since GeneXus 18 Upgrade 10

See Also

GAM - GAMRemote Authentication Type

Client Configuration for GAM Remote Authentication

Identity Provider Configuration for GAM Remote Authentication

GAM Repository features and properties

 

Last update: April 2024 | © GeneXus. All rights reserved. GeneXus Powered by Globant