Unofficial Content

Configures the time in minutes that a refresh_token will remain active.

Description

OAuth refresh_token expiration (minutes) (&GAMSecurityPolicy.OauthRefreshTokenExpire) is a GAM Security Policy property that allows to configure the time in minutes that a refresh_token will remain active.

By default, this property is set to 43200 minutes (30 days).

This property can't be 0.

As long as a refresh_token is valid, it can be used to request a new OAuth Token.

When a client make request to an Identity Provider (IDP) to obtain a new access_token based on a refresh_token, the IDP validates if the refresh_token received is not expired.

For this property to make sense, the Token maximum renovations property must be set greater than zero.

Sample

The way to use it in the GeneXus code (by using the GAM API) is the following:

&GAMSecurityPolicy.OAuthRefreshTokenExpire = 60 //minutes

See Also

GAM - Security Policies
GAM - OAuth 2.0 Endpoints to use GAM as Web IDP Server
HowTo: Use OAuth 2.0 Endpoints to authenticate with GAM as REST IDP Server
GAM - OAuth 2.0 Authentication Type

Last update: April 2024 | © GeneXus. All rights reserved. GeneXus Powered by Globant