Hi Lasantha, No, that capability will still be there. Plan is to write a custom grant type (similar to client_credentials) which can accept the token validity period as an input parameter. The API Store will invoke the endpoint which implements this grant type.
Thanks, NuwanD. On Tue, Feb 24, 2015 at 12:26 AM, Lasantha Fernando <[email protected]> wrote: > Hi Amila, > > Does this mean that there will be no option to set the validity period > through UI when renewing an access token? Are we actually breaking the spec > if we are changing the access token validity period when renewing a token? > > Thanks, > Lasantha > > On 23 February 2015 at 11:36, Amila De Silva <[email protected]> wrote: > >> Hi All, >> >> Until the last APIM release APIKeyMgtSubscriberService was used by API >> Store to create OAuthApplications, generate/renew Access Tokens. >> >> During certain points in generating Application Access Tokens and >> renewing them, API Store had to access the tables in which OAuth tokens are >> stored and APIKeyMgtSubscriberService provided a clean interface preventing >> direct DB calls happening from the API Store. >> >> For example, when renewing a token, Store would call renewAccessToken >> operation, which would call /revoke and /token endpoints to obtain a new >> token, but which then would directly access IDN_OAUTH2_ACCESS_TOKEN table >> and change Token Type and validity period provided through Store UI. >> >> Plan is to drop APIKeyMgtSubscriberService entirely in the coming >> release, because >> >> 1. Only two of the operations (renewAccessToken & getAccessToken) out of >> all 10 available operations are actually being used. >> >> 2. With the changes proposed for Authorization Server Decoupling, all Key >> Generating operations will be performed through standard endpoints, hence >> the two operations which access the DB directly will be of no use. >> >> Please raise any concerns if this is likely to break anything. >> >> -- >> *Amila De Silva* >> >> WSO2 Inc. >> mobile :(+94) 775119302 >> >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > > -- > *Lasantha Fernando* > Software Engineer - Data Technologies Team > WSO2 Inc. http://wso2.com > > email: [email protected] > mobile: (+94) 71 5247551 > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Nuwan Dias Associate Tech Lead - WSO2, Inc. http://wso2.com email : [email protected] Phone : +94 777 775 729
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
