Security.Oauth.Tokenlifetime Value Of 3600 Increased By A Factor Of 1000 Leading To Tokens That Last 41 Days (Doc ID 2496135.1)

Last updated on SEPTEMBER 15, 2022

Applies to:

Oracle REST Data Services - Version 18.2 to 18.3
Information in this document applies to any platform.

Symptoms

When the security.oauth.tokenLifetime is set to 3600 in the defaults.xml file, the token does not expire in 3600 seconds and it lasts for the 41 days.

This is the token request:

curl -X POST \

  {ORDS_PATH}/oauth/token \

  -H 'Authorization: Basic {OAUTH_CLIENT}' \

  -H 'Cache-Control: no-cache' \

  -H 'Content-Type: application/x-www-form-urlencoded' \

  -d grant_type=client_credentials

This is the response:

{

    "access_token": "{OAUTH_TOKEN}",

    "token_type": "bearer",

    "expires_in": 3600000

}

which is...41 days

Changes

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Security.Oauth.Tokenlifetime Value Of 3600 Increased By A Factor Of 1000 Leading To Tokens That Last 41 Days (Doc ID 2496135.1)

Applies to:

Symptoms

Changes

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!