microsoft-authentication-library-for-objc icon indicating copy to clipboard operation
microsoft-authentication-library-for-objc copied to clipboard
verified publisher icon AzureAD

ID Token returned by acquire token silent is expired

Open macdrevx opened this issue 1 year ago • 3 comments

We're seeing expired ID tokens returned from -[MSALPublicClientApplication acquireTokenSilentWithParameters:completionBlock:] even when specifying forceRefresh = YES in the parameters.

Seems to correspond to situations where the ID token expiration is ~30 min earlier than the access token expiration.

We're on v1.3.0.

I'm upgrading to the latest to see if that helps, but wanted to check to see if this is a known issue.

macdrevx avatar Oct 01 '24 15:10 macdrevx

Still seeing this behavior as of v1.5.1. @fidelianawar any guidance to offer?

macdrevx avatar Oct 10 '24 14:10 macdrevx

I'm updating to v1.6.0 to see if #2346 helps

macdrevx avatar Oct 10 '24 14:10 macdrevx

@macdrevx : Do you also have authenticator on the device ? we recently found a bug is authenticator broker code path that could cause force refresh flag to be ignored. This has been fixed in the back end. Please re-test if your scenario included Authenticator as well.

Veena11 avatar Oct 21 '24 22:10 Veena11

The upgrade to v1.6.0 seems to have resolved this issue. Thanks!

macdrevx avatar Oct 24 '24 13:10 macdrevx