Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-129185

OAuth2 Flow to use Remember Device Cookie + Refresh Token

    XMLWordPrintable

    Details

    • Type: Spike
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Application Security > OAuth2
    • Labels:
      None
    • Spike Type:
      Technical

      Description

      Explore the option of creating a new OAuth2 flow to send the "Remember Device" cookie + refresh token to the token endpoint (/o/oauth2/token) to obtain a new access token.

      It will be an alternative to using the cookie during the authorization process to improve UX in SPA.

        Attachments

          Issue Links

          is related to

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. LPS-126597 As an End User, I want to make the portal remember my authorization grant for a specific application/client id on a specific device

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

            Activity

              People

              Assignee:
              support-lep@liferay.com SE Support
              Reporter:
              marta.medio Marta Medio
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:

                  Packages

                  Version Package