Skip to content

Set quarkus.oidc.authentication.session-age-extension to a larger value by default and clarify its purpose #41130

New issue
New issue
Open
#41745
Open
Set quarkus.oidc.authentication.session-age-extension to a larger value by default and clarify its purpose#41130
#41745

Description

@sberyozkin

sberyozkin
openedon Jun 11, 2024

Description

The role of quarkus.oidc.authentication.session-age-extension is not to extend the real session's age (ID token's age) but to make sure this token is available to Quarkus for a re-verification, possible auto-refresh, etc, even if the ID token expired.

Implementation ideas

Set to say 8 hours by default, and it will eliminate a lot of OIDC related session queries and concerns.
Also make it much clearer in the docs...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    area/oidckind/enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions