[mitreid-connect] OpenID connect client

[Justin Richer]

Getting OpenAM to issue refresh tokens is going to require configuration 
on the OpenAM side, and I can't really help with that end of the 
process. It *should* issue refresh tokens if the "offline_access" scope 
is requested and approved, but I don't know for sure.

The MITREid Connect client library will take in a refresh token, but it 
doesn't do anything with it. In fact, it doesn't use the access token at 
all after the initial log in that fetches the user information.

With that in mind, what do you need the refresh token for? Getting a new 
access token with a refresh token isn't going to tell you that the user 
is still logged in. In fact, refresh tokens are designed specifically 
for the case that the user isn't present anymore.

  -- Justin

On 1/9/2015 8:19 AM, Laxmi P wrote:
> Hi,
>
> I'm using mitreid OpenID connect client spring security implemenation 
> with OpenAM as openid connect provider ...and i was able to implement 
> my client successfully...and able to login and see access_token, token 
> id  response data from OpenAM.
>
> How can i issue a refresh token, once my access_token expires after a 
> valid period...
>
> We have configured OpenAM with access_token expiry time to 600 seconds 
> and refresh token value to 60 minutes...
>
> I would like to see a new access token by passing existing refresh 
> token without user intervention to login again after 10 min ... (after 
> token expiry time)..
>
> is it something possible with mitreid OpenID connect client?
>
> Please let me know your suggestions.
>
> Thanks
> Piska
>
>
> _______________________________________________
> mitreid-connect mailing list
> mitreid-connect at mit.edu
> http://mailman.mit.edu/mailman/listinfo/mitreid-connect

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20150109/5da6d006/attachment.htm