My Oracle Support Banner

Security.Oauth.Tokenlifetime Value Of 3600 Increased By A Factor Of 1000 Leading To Tokens That Last 41 Days (Doc ID 2496135.1)

Last updated on SEPTEMBER 28, 2019

Applies to:

Oracle REST Data Services - Version 18.2 to 18.3
Information in this document applies to any platform.

Symptoms

When the security.oauth.tokenLifetime is set to 3600 in the defaults.xml file,  the token does not expire in 3600 seconds and it lasts for the 41 days.

This is the token request: 

curl -X POST \ 

  {ORDS_PATH}/oauth/token \ 

  -H 'Authorization: Basic {OAUTH_CLIENT}' \ 

  -H 'Cache-Control: no-cache' \ 

  -H 'Content-Type: application/x-www-form-urlencoded' \ 

  -d grant_type=client_credentials 


This is the response: 

{ 

    "access_token": "{OAUTH_TOKEN}", 

    "token_type": "bearer", 

    "expires_in": 3600000 

} 

which is...41 days 

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.