[
https://issues.apache.org/jira/browse/NIFI-4890?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17621273#comment-17621273
]
John Browne commented on NIFI-4890:
-----------------------------------
Thanks for the reply [~exceptionfactory].
I'm actually using Keycloak and it does appear to have some options for setting
the token lifespan and session time.
!image-2022-10-20-12-23-38-675.png!
I looked up the Access Token Lifespan default value in Keycloak and from what I
found it says it's 30 minutes. My NiFi is expiring after 5 minutes so I didn't
think changing these would have any impact.
If you think otherwise I can play around with this a-bit more and see what the
result is.
> OIDC Token Refresh is not done correctly
> ----------------------------------------
>
> Key: NIFI-4890
> URL: https://issues.apache.org/jira/browse/NIFI-4890
> Project: Apache NiFi
> Issue Type: Bug
> Components: Core UI
> Affects Versions: 1.5.0
> Environment: Environment:
> Browser: Chrome / Firefox
> Configuration of NiFi:
> - SSL certificate for the server (no client auth)
> - OIDC configuration including end_session_endpoint (see the link
> https://auth.s.orchestracities.com/auth/realms/default/.well-known/openid-configuration)
>
> Reporter: Federico Michele Facca
> Assignee: David Handermann
> Priority: Major
> Attachments: image-2022-10-20-12-23-38-675.png
>
>
> It looks like the NIFI UI is not refreshing the OIDC token in background, and
> because of that, when the token expires, tells you that your session is
> expired. and you need to refresh the page, to get a new token.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
