Re: [Hawkular-dev] Keycloak Authorization Tokens
Thank you for the answers.
No. Even if the refresh token is configured to not expire, it will expire
should the user perform a logout. In other words: every refresh token
needs
an active user session, otherwise it's understood that it has expired.
Is it possible to configure the session length to a longer period by
default then? 30 minutes seems very little and, as I’ve mentioned, will be
(very) frustrating for users.
Attachments:
- attachment.html (text/html — 765 bytes)