The client has the cancel option.
The consent is in VISSv2 always tied to an access token that has an expiry time.
When a “service” terminates - successfully, or due to an error, or expired token, the access token for that service is deleted, and thus an associated consent is also terminated.
Arguments for not needing a consent expiry time:
The client has the cancel option. The consent is in VISSv2 always tied to an access token that has an expiry time. When a “service” terminates - successfully, or due to an error, or expired token, the access token for that service is deleted, and thus an associated consent is also terminated.