You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@shindig.apache.org by "Andreas Kohn (JIRA)" <ji...@apache.org> on 2015/07/21 15:43:04 UTC

[jira] [Created] (SHINDIG-1996) OAuth 2.0 Token Response should return 'expires_in' in seconds

Andreas Kohn created SHINDIG-1996:
-------------------------------------

             Summary: OAuth 2.0 Token Response should return 'expires_in' in seconds
                 Key: SHINDIG-1996
                 URL: https://issues.apache.org/jira/browse/SHINDIG-1996
             Project: Shindig
          Issue Type: Bug
          Components: Java
    Affects Versions: 2.5.2
            Reporter: Andreas Kohn


As per https://tools.ietf.org/html/rfc6749#section-5.1

{quote}
   expires_in
         RECOMMENDED.  The lifetime in seconds of the access token.  For
         example, the value "3600" denotes that the access token will
         expire in one hour from the time the response was generated.
         If omitted, the authorization server SHOULD provide the
         expiration time via other means or document the default value.
{quote}

shindig's OAuth2TokenHandler returns the expires_in field in milliseconds.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)