Re: [keycloak-dev] Offline tokens - step 1
On 9/21/2015 9:04 AM, Marek Posolda wrote:
> You have to move this out of UserModel. UserModel may be backed
99% by
> a UserFederationProvider. In the near future, UserFederationProvider
> users may all sit in memory for only the lifetime of the session.
>
>
Does it makes sense to issue offline token for the users, which are
valid just for the lifetime of the session?
The users aren't temporary, they are just stored in LDAP or something.
So yes, it does make sense to issue offline tokens. The offline token
storage will just need to store a reference to the user so it can
rebuild it through our SPIs if needed.
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com