Cognito OAuth Non Expiring Token
0
Does Cognito OAuth has an option to generate a non-expiring token when using authorization code grant type?
A customer wants to migrate their OAuth solution to Cognito and they have an OAuth authorization code grant type who provides a non expiring token to partners. I have not found an option in Cognito to generate a non-expiring token.
已提問 6 年前檢視次數 2339 次
1 個回答
- 最新
- 最多得票
- 最多評論
0
By default the access and id token expire after 1 hour but Cognito User Pools also issues a refresh token which expires by default at 30 days and can be extended to 3650 days. You can then use the refresh token to get new id and access tokens. The expiration range for the refresh token should be sufficient for most use cases.
Is a non-expiring token really a good idea?
相關內容
- 已提問 1 年前
AWS 官方已更新 3 年前- AWS 官方已更新 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 1 年前