Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-1491

OAuth2: expires_in field is recommended, not mandatory

    Details

    • Sprint:
      OpenIG Sprint 93 (last dev)

      Description

      In access token response, the expires_in field is recommended but not mandatory. However responses without this field are rejected.

      Below a response from Salesforce AS :

      10:07:44:949 | ERROR | I/O dispatcher 13 | o.f.o.f.o.c.OAuth2ClientFilter | An error occurred in the OAuth2 process
      org.forgerock.openig.filter.oauth2.client.OAuth2ErrorException: error="server_error", error_description="'expire_in' field value is neither a Number nor a String"
              at org.forgerock.openig.filter.oauth2.client.OAuth2Session.stateAuthorized(OAuth2Session.java:206)
              at org.forgerock.openig.filter.oauth2.client.OAuth2ClientFilter$2.apply(OAuth2ClientFilter.java:545)
              at org.forgerock.openig.filter.oauth2.client.OAuth2ClientFilter$2.apply(OAuth2ClientFilter.java:542)
              at org.forgerock.util.promise.PromiseImpl$5.handleStateChange(PromiseImpl.java:394)
              at org.forgerock.util.promise.PromiseImpl.handleCompletion(PromiseImpl.java:567)
              at org.forgerock.util.promise.PromiseImpl.setState(PromiseImpl.java:608)
      
      {
      	"access_token": "00D0Y000000aebR!AR4AQDvgXYRiao8boa7JsDcvQlWqcDqppuzRf_fndrk.KLByW2ho7rDaS5Q9BCvG4WLdtrI8DQ.T2ESEaoRNHKPsYlP4z7Od",
      	"signature": "hXoIjxFpIxAOO1wmfTbd0zg9OVfYG9Y1h8hQ+JaP8OM=",
      	"scope": "openid id",
      	"id_token": "eyJraWQiOiIyMDQiLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTkxTdDlhT0ZpaGtBLWJqUWhZVXZOdyIsInN1YiI6Imh0dHBzOi8vbG9naW4uc2FsZXNmb3JjZS5jb20vaWQvMDBEMFkwMDAwMDBhZWJSVUFRLzAwNTBZMDAwMDAwSjlHVFFBMCIsImF1ZCI6IjNNVkc5SHhSWnYwNUhhclQyS3NXTTl1dHY2bldNLkdfa3diYXMuR1hYbVYyMFZab1BJcVBiUmpMaURwLjF2QzRScTJseDJEdWc2WWFhbFpRNU9qaVgiLCJpc3MiOiJodHRwczovL2xvZ2luLnNhbGVzZm9yY2UuY29tIiwiZXhwIjoxNDc5NzIyOTg0LCJpYXQiOjE0Nzk3MjI4NjR9.dDmVLE5_ZET2vJoOuUQTTgCNqHNIQDRXyc8icNCqc4CDW_0PYEqUbrCA05AmjKjUHdGHWQLMky88-cFK9wRjzA9WdsghsXM9Z7nZFmm8Av7feNq99mreA9zkCkEbXrtYqtZRKVybdZ9CVY-n2dCRipelyy_73Awws4YQCymlQmlk1vE-8LsYwO9r735Yq0xp0m07JJbYtaPLRQtF9t5HDcmgxXCRQK9Tv--IlvQPOLSIVMJNYoHbzeWDw7fOFm6fLKpPCUhkNIHqLtKVLL5yYIelSHvUE3T5_3s2dggqyR8UG_z7uHeJUs5FumkR2yXu_7BXpLgrvjq9MFOyILH6A3QSjH66AI2xFLceDdLO7-HhdIhBzUJ8-lAYYb-kij2f6yD9U8PDjPMoVBUDvc46doL0LQw9_r2NHrALlLQQc3U1THQYLMScuc_JVkF1BnqaocS_CmLNOfs6fOZhY-DsJfHWE0sBCNNeEj8_kdZSUYRf3DX0dCL61deCRPA40gBPHlJgSTEVVNk3ayGBcDOR2KYMrsVi3RN9nNNcttT-WoFoMuA_7_P571pjibpH2K6qGfCvy-B7_16gczdxnsdogKGhDVGC5gbJ0hPUaltL5fRn_gxZ97EFhcKd5av06K_jT87-x0MnNjYDMd1q9bf7kbXy8F1F89KeYNjEse82uvI",
      	"instance_url": "https://eu11.salesforce.com",
      	"id": "https://login.salesforce.com/id/00D0Y000000aebRUAQ/0050Y000000J9GTQA0",
      	"token_type": "Bearer",
      	"issued_at": "1479722864748"
      }
      
      

        Attachments

          Activity

            People

            • Assignee:
              violette Violette Roche Montane
              Reporter:
              joachim.andres Joachim Andres
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: