auth-module icon indicating copy to clipboard operation
auth-module copied to clipboard
verified publisher icon nuxt-community

feat: Use oAuth expires_in parameter for accessToken

Open wilhelmbecker opened this issue 3 years ago • 1 comments

The oAuth 2.0 RFC 6749 recommends to use the parameter expires_in to set a token expiration time. When given this parameter should be used instead of the maxAge value for the token.

My Solutionen does not provide a way to overwrite the value, if this parameter is returned with the accessToken by an IDP. Maybe an improvement is required for this problem? If yes, I would be glad for any suggestion how to do so.

I explicit do not add this parameter to the id-token.ts, as an ID-Token must have the exp parameter, which will always overwrite the value. Required by openid

Not sure if using the boolean false value is a pretty way to handle the absence of expires_in

Thanks for your review / feedback

wilhelmbecker avatar Apr 07 '22 13:04 wilhelmbecker

+1

I require this feature as OpenIddict encrypts access tokens. It can be disabled, but I have little desire to do so.

david-sharer avatar Jun 29 '22 16:06 david-sharer