Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

rotation of tokens related to Continuation Request? #147

Closed
fimbault opened this issue Dec 16, 2020 · 2 comments
Closed

rotation of tokens related to Continuation Request? #147

fimbault opened this issue Dec 16, 2020 · 2 comments

Comments

@fimbault
Copy link
Collaborator

Review access token rotation following previous work on PR129 - Continuation Request
Could race conditions occur if the AS rotates its token?
Should it be allowed to rotate?

See more discussion at https://mailarchive.ietf.org/arch/msg/txauth/MW3v-G1tbVFMsLXZFLP2RUMs-ds/
@fimbault fimbault mentioned this issue Dec 16, 2020
Closed
@aaronpk aaronpk mentioned this issue Dec 16, 2020
Merged
@fimbault fimbault mentioned this issue Jan 20, 2021
Closed
@jricher
Copy link
Collaborator

jricher commented Dec 15, 2021

We should discuss the potential race condition upon any token rotation, and have an allowance for accepting the old token during a short interim window to account for this kind of race condition. The rotation request needs to be idempotent: a repeated rotation request needs to return the same information and not do another rotation.

@jricher
Copy link
Collaborator

jricher commented Oct 5, 2022

Token rotation is now more thoroughly covered and separated from the grant management lifecycle.

@jricher jricher closed this as completed Oct 5, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jricher @fimbault