You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I just noticed that there is a field client_secret_expires_at in the hydra_client table.
Is it actually used anywhere?
My use case is that I want to set an expiry on an OAuth2.0 client (not an expiry of an access token generated for that client). After a certain date, I want that client to no longer be able to be used.
I can hack some tooling around actually deleting (can I 'disable' but not delete a client?) a client on a specific date but I wondered if this field effectively handles that for me.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
I just noticed that there is a field
client_secret_expires_at
in thehydra_client
table.Is it actually used anywhere?
My use case is that I want to set an expiry on an OAuth2.0 client (not an expiry of an access token generated for that client). After a certain date, I want that client to no longer be able to be used.
I can hack some tooling around actually deleting (can I 'disable' but not delete a client?) a client on a specific date but I wondered if this field effectively handles that for me.
Thanks!
Beta Was this translation helpful? Give feedback.
All reactions