This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Is there a way to update expiry time of an existing access token ?

Posted on 03-17-2015 09:14 PM
Not applicable
Reply posted on --/--/---- --:-- AM

There is a use case where in based on certain condition I need the access token to be alive for 'x' more minutes than its expiry time.Is there a way to do that ?

Solved Solved
0 3 3,366
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
akoo
New Member
Reply posted on --/--/---- --:-- AM

Seems like you should be able to use SetOauthv2Info policy for something like TTL, but you can't.

Another alternative that is not elegant, but should get the job done:

1) Track the access token where you want to change the TTL (e.g., save it to a variable).

2) Invalidate the token.

<OAuthV2 name="InvalidateToken">   
      <Operation>InvalidateToken</Operation>
      <Tokens>
	<Token type="accesstoken" cascade="true">flow.variable</Token>
	<Token type="refreshtoken" cascade="true">flow.variable</Token>
    </Tokens>
</OAuthV2>

3) Recreate the token using ExternalAccessToken policy with reference to the variable you saved in step 1. More info here.

View solution in original post

Jump to Solution
3 REPLIES 3

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

@Naveen, have you taken a look http://apigee.com/docs/api-services/content/customizing-access-tokens#gettingandsettingcustomattribu... ?

more info here ..

http://apigee.com/docs/api-services/reference/get-oauth-v2-info-policy

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
akoo
New Member
Reply posted on --/--/---- --:-- AM

Seems like you should be able to use SetOauthv2Info policy for something like TTL, but you can't.

Another alternative that is not elegant, but should get the job done:

1) Track the access token where you want to change the TTL (e.g., save it to a variable).

2) Invalidate the token.

<OAuthV2 name="InvalidateToken">   
      <Operation>InvalidateToken</Operation>
      <Tokens>
	<Token type="accesstoken" cascade="true">flow.variable</Token>
	<Token type="refreshtoken" cascade="true">flow.variable</Token>
    </Tokens>
</OAuthV2>

3) Recreate the token using ExternalAccessToken policy with reference to the variable you saved in step 1. More info here.

Jump to Solution

Posted on --/--/---- --:-- AM
willwitman
Staff
In response to akoo
Reply posted on --/--/---- --:-- AM

Also, there's more on using ExternalAccessToken here: http://apigee.com/docs/api-services/content/use-third-party-oauth-system

Jump to Solution