leastprivilege
commented
7 years ago Oh right.
Since a WS-Fed token is like an id_token, you can use the identity token lifetime setting on the client.
Closed scottbrady91 closed 7 years ago
leastprivilege
commented
7 years ago Oh right.
Since a WS-Fed token is like an id_token, you can use the identity token lifetime setting on the client.
scottbrady91
commented
7 years ago Is that clear enough to users? We can make it clear in the docs I guess.
leastprivilege
commented
7 years ago yes
SharePoint relying parties are currently silently failing due to tokens expiring during their login process.
Tokens are currently set to the same lifetime as the identity token (defaults to 300 seconds). Previous token lifetime in IdentityServer 3 was 10 hours. I imagine there's a more sensible number in between these :p
Is it worth adding in a SAML token lifetime to the relying party model?