Configures the time in seconds that an access_code will remain active.
&GAMSecurityPolicy.OAuthAccessCodeExpire = Number_Seconds
Where:
&GAMSecurityPolicy
Is a variable based on the GAMSecurityPolicy data type.
Number_Seconds
Time in seconds that an access_code will remain active.
This property defines the maximum time (in seconds) available for a Client application to log into the Identity Provider (IDP). It is the time that can elapse from the time the user enters their credentials until it finishes getting the access_token in the client.
By default, this property is set to 180 seconds. It can't be 0.
In the Standard OAuth 2.0 flow, the access code (code) is provided by the Identity Provider (IDP) to the Client Application when the user's credentials are validated in the IDP (signin step). Next, this access code is sent by the Client Application in the request to the IDP to obtain an access_token (access_token step) and complete the login. The access code is valid for a single use.
Note: When using the
GAM Web Backoffice, this property is shown with the description “OAuth access_code expiration”.
To set this property in the GeneXus code (by using the GAM API), the syntax is as follows:
&GAMSecurityPolicy.OAuthAccessCodeExpire = 200 //seconds
GAM - OAuth 2.0 Endpoints to use GAM as Web IDP Server
HowTo: Use OAuth 2.0 Endpoints to authenticate with GAM as REST IDP Server
GAM - OAuth 2.0 Authentication Type