[keycloak-dev] Offline tokens - step 1
Bill Burke
bburke at redhat.com
Mon Sep 21 11:55:05 EDT 2015
On 9/21/2015 9:04 AM, Marek Posolda wrote:
>> You have to move this out of UserModel. UserModel may be backed 99% by
>> a UserFederationProvider. In the near future, UserFederationProvider
>> users may all sit in memory for only the lifetime of the session.
>>
>>
> Does it makes sense to issue offline token for the users, which are
> valid just for the lifetime of the session?
>
The users aren't temporary, they are just stored in LDAP or something.
So yes, it does make sense to issue offline tokens. The offline token
storage will just need to store a reference to the user so it can
rebuild it through our SPIs if needed.
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
More information about the keycloak-dev
mailing list