This is an enhance request to add token life time options per OAuth2/OpenID Connect client:
- Authorization Code Life Time (Seconds)
- Access Token Life Time (Seconds)
- Refresh Token Life Time (Seconds)
- JWT Token Life Time (Seconds)
Background of enhancement
Currently, token life times can be set per OAuth2 service (in other words, per realm). If we want to use various OAuth2 clients, we cannot set the times according to client's security level (can only set the times to the lowest values for the client having the highest security risk). In this case, OpenAM servers have to process requests more than actually needed.