How long apigee retains the expired access token in the db?

I am just checking for how long apigee keeps expired access token in its DB.

Is there any conditional things which will flush out the expired token for e.g Refreshtoken call will remove the expired token from the DB and update the new access token there?

Solved Solved
0 2 365
1 ACCEPTED SOLUTION

sidd-harth
Participant V

OAuth v2 tokens are purged from Apigee Edge system 3 days (259200 seconds) after both the access token and refresh token (if it exists) have expired.

(The 3-day purge of expired tokens applies to Edge for Private Cloud version 4.19.01 and later. For earlier versions, the default purge interval is 180 days.)

https://docs.apigee.com/api-platform/reference/policies/oauthv2-policy#purgingaccesstokens

View solution in original post

2 REPLIES 2

sidd-harth
Participant V

OAuth v2 tokens are purged from Apigee Edge system 3 days (259200 seconds) after both the access token and refresh token (if it exists) have expired.

(The 3-day purge of expired tokens applies to Edge for Private Cloud version 4.19.01 and later. For earlier versions, the default purge interval is 180 days.)

https://docs.apigee.com/api-platform/reference/policies/oauthv2-policy#purgingaccesstokens

Default purge settings can be changed on an only private cloud, not on the edge cloud. which make sense.