-
We have a running application with oidc-client-ts version 2.4.0. We are using `automaticSilentRenew: true`, `accessTokenExpiringNotificationTimeInSeconds: 60` and have registered a callback via `addAc…
-
- Create a table in DB to store the `refresh_token` timestamp for each
- Create a new endpoint `refresh` to generate new pairs of tokens (access, refresh).
- If the sent token has a timestamp before t…
-
## Describe the issue
I am using Okta as an IDP, and as such, request both groups and offline_access as additional scopes so I can get the groups included in the Token (as our RBAC is based on group…
-
In useRefreshToken, you should delete all refresh tokens from redis. If a hacker has one refresh token, we can assume they have more than one. We should invalidate all refresh tokens, and possibly eve…
-
## Which version of the SDK are you using?
1.10.0
## A quick summary and/or background
Discovered this issue when debugging refresh token issues with @RettBehrens .
If `scope` is passed as a `st…
-
Based on [this](https://developers.eveonline.com/blog/article/sso-endpoint-deprecations-2) (under "PREPARE FOR REFRESH TOKEN ROTATIONS") and [this](https://docs.esi.evetech.net/docs/sso/refreshing_acc…
-
With server side sessions on IdentityServer the refresh token flow not only provides new access tokens, but it also ensure that the session on IdentityServer is kept alive.
Consider adding a featur…
-
Sometimes the backend produces errors like these:
```
oauthlib.oauth2.rfc6749.errors.TokenExpiredError: (token_expired)
```
Unsure how to address this, because according to the [`flask_dance` …
-
Witam, mam problem ze skryptem który ma działać jako autoresponder w nowych dyskusjach. Skrypt się prawidłowo wykonuje, ale nie wyświetla info w nowych dyskusjach.
```
-
[API Syncing] Failed to get cloud devices from Daikin Cloud: invalid_grant (The provided authorization code or refresh token is revoked.)
Key and ClientID are good, but I have this error