Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
OAuth2 ClientCredential grant custom expiration not being read from Flask configuration. #43
When registering a client credential grant for the
the specified custom expiration time is not being read.
At first I believe that there was simply an error in the docs, in that the configuration value key should be pluralized, e.g.
After a bit more digging, it seems that the
A very subtle bug that took me a while to track down; I attempted to create a test case, but it's not very obvious as to where the test case should exist since
If this is at all not clear, please let me know and I'll attempt to provide additional information.
And thank you for all your hard work! Authlib is fantastic, and has been a pleasure to use even in it's not-completely-done state.
The current workaround is pretty simple: I simply set the pluralized config value
The issue, as described above, is that the currently specified default in the code base is not being used, and if you change the default bearer token expiration time then the default client credential grant expiration time will pick up the same value as a result.