Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-124898

As an Instance Administrator, I want the access token to be refreshed before the access token expires

    Details

      Description

      Motivation

      The current algorithm in Liferay is to request a new ID Token using the Refresh Token once the Access Token has expired. However, this algorithm fails when both the Refresh Token and the Access Token have the same lifetime.

      With a new configuration entry, the portal administrator will be able to configure that the portal will try to refresh the token before that expires. For example with setting a time offset with which refreshing the token will be triggered the access token lifetime minus offset.

      Besides, in order for this setup to work properly, the portal administrator may be able to configure a session timeout with a duration inferior to the offset and have session auto extension so as to make sure that a request to the portal happens during the time frame of this offset.

      Link to a custom development implementing such behaviour (with hard coded offset equals to half lifetime): https://github.com/fabian-bouche-liferay/oidc-refresh

      Acceptance Criteria

      1. As an Instance Administrator, I want to be able to configure that to have the access token be refreshed before the access token expires on order not to have additional, unnecessary authorization grant step
      2. As an Instance Administrator, I want to be able to configure a session timeout also in order to have session auto extension so as to make sure that a request to the portal happens during the given time frame from the previous configuration.

        Attachments

          Issue Links

          There are no Sub-Tasks for this issue.

            Activity

              People

              Assignee:
              zsigmond.rab Zsigmond Rab
              Reporter:
              fabian.bouche Fabian Bouché
              Engineering Assignee:
              Arthur Chen
              Recent user:
              Arthur Chen
              Participants of an Issue:
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Packages

                  Version Package
                  7.3.X
                  7.4.13 DXP GA1
                  7.4.3.4 CE GA4
                  Master