1. OpenID Foundation
  2. WGs
  3. fapi
  4. Pull requests

Restrict lifetime of access tokens

Merged
#166 · Created  · Last updated

Merged pull request

Merged in access-token-lifetime (pull request #166)

  • c919460
  • Author:
  • Closed by:
  • 2020-07-29

Description

This refers to issue:

The references in oauth-security-topics didn’t really line up - so I left them out.

The closest recommendation I could find was in: https://tools.ietf.org/html/rfc6819#section-3.1.2 - which I suppose we could reference?

10 mins is arbitrary…. up for discussion.

0 attachments

Loading commits...