Hi Nirodha, if you have set <UserAccessTokenDefaultValidityPeriod>60</UserAccessTokenDefaultValidityPeriod> Access token should be expired after configured time period.
But using <EnableOAuthCache>true</EnableOAuthCache> we check the cache for the token unless we have to check the database. Thanks, Ishara On Thu, Mar 6, 2014 at 12:33 PM, Nuwan Dias <[email protected]> wrote: > Hi, > > AFAIK the token object which is in the cache is aware of its creation > time, lifetime, etc. So when you make a request with a particular token, > the token validator will first check whether there is a cache entry for > that token. If there is, it will pick it up from the cache and check its > validity (by comparing system time to token creation time) and decide > whether the token is expired or not. > > Thanks, > NuwanD. > > > On Thu, Mar 6, 2014 at 12:20 PM, Nirodha Pramod <[email protected]> wrote: > >> Hi Johann, >> >> But since <EnableOAuthCache>true</EnableOAuthCache> is set to true, >> doesn't it cache the token (for 15mins? AFAIK) ? If I am wrong how does the >> OAuth Cache behave in this case? >> >> regards, >> Nirodha >> >> >> On Thu, Mar 6, 2014 at 11:31 AM, Johann Nallathamby <[email protected]>wrote: >> >>> This behavior is correct since you have set the token validity as 60s. >>> After one minute the token is invalid. >>> >>> >>> On Thu, Mar 6, 2014 at 11:03 AM, Asanthi Kulasinghe <[email protected]>wrote: >>> >>>> >>>> Hi, >>>> >>>> Can someone explain the behaviour of >>>> <EnableOAuthCache>true</EnableOAuthCache> , in identity.xml of API-Manager. >>>> >>>> Does it have an impact on the token expiration time? >>>> >>>> With the following configurations, my token expires exactly after 60 >>>> seconds, even if the API has been invoked before the expiration. >>>> >>>> identity.xml : >>>> >>>> <UserAccessTokenDefaultValidityPeriod>60</UserAccessTokenDefaultValidityPeriod> >>>> <TimestampSkew>0</TimestampSkew> >>>> <EnableOAuthCache>true</EnableOAuthCache> >>>> >>>> api-manager.xml : >>>> >>>> <EnableKeyMgtValidationInfoCache>false</EnableKeyMgtValidationInfoCache> >>>> >>>> <EnableKeyMgtValidationInfoCache>false</EnableKeyMgtValidationInfoCache> >>>> >>>> Is this correct or should the token be cached for the default duration >>>> of 15 mins since <EnableOAuthCache> is set to true? >>>> >>>> Regards >>>> >>>> *Asanthi Kulasinghe* >>>> Software Engineer - QA >>>> WSO2 Inc; http://www.wso2.com/. >>>> Mobile: +94777355522 >>>> >>>> >>>> >>> >>> >>> -- >>> Thanks & Regards, >>> >>> *Johann Dilantha Nallathamby* >>> Senior Software Engineer >>> Integration Technologies Team >>> WSO2, Inc. >>> lean.enterprise.middleware >>> >>> Mobile - *+94777776950* >>> Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>* >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> >> *Nirodha Gallage* >> Senior Software Engineer, QA. >> WSO2 Inc.: http://wso2.com/ >> Mobile: +94716429078 >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > Nuwan Dias > > Senior Software Engineer - WSO2, Inc. http://wso2.com > email : [email protected] > Phone : +94 777 775 729 > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Ishara Karunarathna Software Engineer WSO2 Inc. - lean . enterprise . middleware | wso2.com email: [email protected], blog: isharaaruna.blogspot.com, mobile: +94 718211678
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
