Thanks all for the clarifications.
On Thu, Mar 6, 2014 at 12:40 PM, Ishara Karunarathna <[email protected]>wrote: > Hi Nirodha, > > if you have set > > <UserAccessTokenDefaultValidityPeriod>60</UserAccessTokenDefaultValidityPeriod> > Access token should be expired after configured time period. > > But using > <EnableOAuthCache>true</EnableOAuthCache> > we check the cache for the token unless we have to check the database. > > Thanks, > Ishara > > > > On Thu, Mar 6, 2014 at 12:33 PM, Nuwan Dias <[email protected]> wrote: > >> Hi, >> >> AFAIK the token object which is in the cache is aware of its creation >> time, lifetime, etc. So when you make a request with a particular token, >> the token validator will first check whether there is a cache entry for >> that token. If there is, it will pick it up from the cache and check its >> validity (by comparing system time to token creation time) and decide >> whether the token is expired or not. >> >> Thanks, >> NuwanD. >> >> >> On Thu, Mar 6, 2014 at 12:20 PM, Nirodha Pramod <[email protected]> wrote: >> >>> Hi Johann, >>> >>> But since <EnableOAuthCache>true</EnableOAuthCache> is set to true, >>> doesn't it cache the token (for 15mins? AFAIK) ? If I am wrong how does the >>> OAuth Cache behave in this case? >>> >>> regards, >>> Nirodha >>> >>> >>> On Thu, Mar 6, 2014 at 11:31 AM, Johann Nallathamby <[email protected]>wrote: >>> >>>> This behavior is correct since you have set the token validity as >>>> 60s. After one minute the token is invalid. >>>> >>>> >>>> On Thu, Mar 6, 2014 at 11:03 AM, Asanthi Kulasinghe >>>> <[email protected]>wrote: >>>> >>>>> >>>>> Hi, >>>>> >>>>> Can someone explain the behaviour of >>>>> <EnableOAuthCache>true</EnableOAuthCache> , in identity.xml of >>>>> API-Manager. >>>>> >>>>> Does it have an impact on the token expiration time? >>>>> >>>>> With the following configurations, my token expires exactly after 60 >>>>> seconds, even if the API has been invoked before the expiration. >>>>> >>>>> identity.xml : >>>>> >>>>> <UserAccessTokenDefaultValidityPeriod>60</UserAccessTokenDefaultValidityPeriod> >>>>> <TimestampSkew>0</TimestampSkew> >>>>> <EnableOAuthCache>true</EnableOAuthCache> >>>>> >>>>> api-manager.xml : >>>>> >>>>> <EnableKeyMgtValidationInfoCache>false</EnableKeyMgtValidationInfoCache> >>>>> >>>>> <EnableKeyMgtValidationInfoCache>false</EnableKeyMgtValidationInfoCache> >>>>> >>>>> Is this correct or should the token be cached for the default duration >>>>> of 15 mins since <EnableOAuthCache> is set to true? >>>>> >>>>> Regards >>>>> >>>>> *Asanthi Kulasinghe* >>>>> Software Engineer - QA >>>>> WSO2 Inc; http://www.wso2.com/. >>>>> Mobile: +94777355522 >>>>> >>>>> >>>>> >>>> >>>> >>>> -- >>>> Thanks & Regards, >>>> >>>> *Johann Dilantha Nallathamby* >>>> Senior Software Engineer >>>> Integration Technologies Team >>>> WSO2, Inc. >>>> lean.enterprise.middleware >>>> >>>> Mobile - *+94777776950* >>>> Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>* >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> >>> *Nirodha Gallage* >>> Senior Software Engineer, QA. >>> WSO2 Inc.: http://wso2.com/ >>> Mobile: +94716429078 >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> Nuwan Dias >> >> Senior Software Engineer - WSO2, Inc. http://wso2.com >> email : [email protected] >> Phone : +94 777 775 729 >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > Ishara Karunarathna > Software Engineer > WSO2 Inc. - lean . enterprise . middleware | wso2.com > > email: [email protected], blog: isharaaruna.blogspot.com, mobile: +94 > 718211678 > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- *Asanthi Kulasinghe* Software Engineer - QA WSO2 Inc; http://www.wso2.com/. Mobile: +94777355522
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
