Any idea why its bad? That jira doesn't clearly say why. It won't return anything in those headers if someone sends invalid values. So I'm wondering how it can be bad.
The reason we use these return values is to clear the gateway cache. When the key manager refreshes a token, the Gateway doesn't know which access token was revoked. So it has no knowledge of which tokens to clear from its cache. Any suggestions on alternative approaches of clearing the cache in those scenarios? Thanks, NuwanD. On Fri, Jun 24, 2016 at 6:25 PM, Aparna Karunarathna <[email protected]> wrote: > Hi Nuwan, > > Kavitha was asking, RevokedAccessToken & RevokedRefreshToken are getting > in the header because it was requested requirement by APIM team [1] ? Jira > [1] says it's a bad implementation. So are we going to fix[2] ? > > [1] https://wso2.org/jira/browse/IDENTITY-4112 > [2] https://wso2.org/jira/browse/APIMANAGER-5098 > > Regards, > Aparna. > > On Fri, Jun 24, 2016 at 5:44 PM, Nuwan Dias <[email protected]> wrote: > >> Can you explain what the issue here is? You have raised the ticket as a >> bug but you've forgotten to describe what the bug actually is? >> >> On Fri, Jun 24, 2016 at 5:39 PM, Kavitha Subramaniyam <[email protected]> >> wrote: >> >>> Hi apim team, >>> A jira has been raised to track this issue in [1] >>> >>> [1] https://wso2.org/jira/browse/APIMANAGER-5098 >>> >>> Thanks, >>> >>> On Thu, Jun 23, 2016 at 6:31 PM, Kavitha Subramaniyam <[email protected]> >>> wrote: >>> >>>> Hi team, >>>> Highly appreciate your update on this. >>>> >>>> Thanks, >>>> >>>> On Wed, Jun 22, 2016 at 2:28 PM, Kavitha Subramaniyam <[email protected] >>>> > wrote: >>>> >>>>> Hi team, >>>>> >>>>> I observed that both revoked access and revoked refresh tokens were >>>>> returning in http response header [3]. >>>>> setup : IS as KM >>>>> - apim 2.0.0 17th nightly build >>>>> - IS 5.2.0 19th build >>>>> - Token encryption enabled >>>>> >>>>> Could you please confirm that this behavior is not resolved purposely >>>>> in apim 2.0.0 due to the reasons discussed in mail thread [1], or it has >>>>> been solved? >>>>> Find an identity jira was raised for IS issue [2] >>>>> >>>>> [1] Revoked Access Token and Revoked Refresh Token returned back in >>>>> token revoke endpoint response >>>>> >>>>> [2] https://wso2.org/jira/browse/IDENTITY-4112 >>>>> >>>>> [3] >>>>> >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << HTTP/1.1 >>>>> 200 OK >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> AuthorizedUser: WSO2.ORG/[email protected] >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> Cache-Control: no-store >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << Date: >>>>> Wed, 22 Jun 2016 08:39:00 GMT >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << Pragma: >>>>> no-cache >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> RevokedAccessToken: 030415a3-7b8a-39e7-b154-28cec1aeaf89 >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> RevokedRefreshToken: >>>>> h56lM3zcJNCBbPHJfGnbQpUcI/ocp6CzGaE+r53nYDM021ItoJP4T/tN8fYGkQq6vvke4PwfkMQEt1zP7HNHJwgynI6Ch86C1tNCthxsG2CKsthHvjsGXvOzktURrNUGxJboj+U/r9arQc/mEt/J0skFQm1R76IC9Zlgh/5irBU= >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> Content-Type: text/html >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << >>>>> Content-Length: 0 >>>>> [2016-06-22 14:09:00,745] DEBUG - headers http-outgoing-10 << Server: >>>>> WSO2 Carbon Server >>>>> [2016-06-22 14:09:00,747] DEBUG - headers http-incoming-13 << HTTP/1.1 >>>>> 200 OK >>>>> [2016-06-22 14:09:00,747] DEBUG - headers http-incoming-13 << >>>>> RevokedAccessToken: 030415a3-7b8a-39e7-b154-28cec1aeaf89 >>>>> [2016-06-22 14:09:00,747] DEBUG - headers http-incoming-13 << >>>>> AuthorizedUser: WSO2.ORG/[email protected] >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << >>>>> RevokedRefreshToken: >>>>> h56lM3zcJNCBbPHJfGnbQpUcI/ocp6CzGaE+r53nYDM021ItoJP4T/tN8fYGkQq6vvke4PwfkMQEt1zP7HNHJwgynI6Ch86C1tNCthxsG2CKsthHvjsGXvOzktURrNUGxJboj+U/r9arQc/mEt/J0skFQm1R76IC9Zlgh/5irBU= >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << >>>>> Content-Type: text/html >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << Pragma: >>>>> no-cache >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << >>>>> Cache-Control: no-store >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << Date: >>>>> Wed, 22 Jun 2016 08:39:00 GMT >>>>> [2016-06-22 14:09:00,748] DEBUG - headers http-incoming-13 << >>>>> Transfer-Encoding: chunked >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> Thanks, >>>>> >>>>> -- >>>>> Kavitha.S >>>>> *Software Engineer -QA* >>>>> Mobile : +94 (0) 771538811 <%2B94%20%280%29%20773%20451194> >>>>> [email protected] <[email protected]> >>>>> >>>> >>>> >>>> >>>> -- >>>> Kavitha.S >>>> *Software Engineer -QA* >>>> Mobile : +94 (0) 771538811 <%2B94%20%280%29%20773%20451194> >>>> [email protected] <[email protected]> >>>> >>> >>> >>> >>> -- >>> Kavitha.S >>> *Software Engineer -QA* >>> Mobile : +94 (0) 771538811 <%2B94%20%280%29%20773%20451194> >>> [email protected] <[email protected]> >>> >> >> >> >> -- >> Nuwan Dias >> >> Technical Lead - WSO2, Inc. http://wso2.com >> email : [email protected] >> Phone : +94 777 775 729 >> > > > > -- > *Regards,* > > *Aparna Karunarathna.* > > > *Associate Technical Lead - QAWSO2 Inc.Mobile: 0714002533* > -- Nuwan Dias Technical Lead - WSO2, Inc. http://wso2.com email : [email protected] Phone : +94 777 775 729
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
