Slack OAuth 令牌到期
[英]Slack OAuth token expiration
问题描述
I had a couple of followup questions in reference to the answer :
关于答案,我有几个后续问题:
Does the user access token obtained using OAuth flow expire in a given time period by default?
使用OAuth流获取的用户access token是否默认在给定的时间段内过期? It does mention here that they never expire but wanted to confirm once.它确实在这里提到它们永不过期但想确认一次。Authorization codes required to get user access token expires in 10minutes after issuance.
获取用户访问令牌所需的授权代码将在颁发后 10 分钟内过期。 In such a scenario user will have to be redirected again?在这种情况下,用户将不得不再次重定向?If the user either uninstalls the application or revokes the token and say decides to reinstall the application later.
如果用户卸载应用程序或撤销令牌并说决定稍后重新安装应用程序。
In this scenario is the user access token now different from what it was before the app reinstallation?在这种情况下,用户访问令牌现在是否与重新安装应用程序之前不同?
1 个解决方案
解决方案1
1 已采纳 2023-01-16 21:43:18
- Correct, access tokens don't expire unless you have enabled token rotation .正确,除非您启用令牌轮换,否则访问令牌不会过期。
- Yes, in that case the user would have to be redirected again.是的,在那种情况下,用户将不得不再次重定向。
- Yes, once a user uninstalls the app and the token is revoked, that token will never be useable again.是的,一旦用户卸载应用程序并且令牌被撤销,该令牌将永远无法再次使用。 When the same user re-installs the app a new access token is provided.当同一用户重新安装该应用程序时,将提供一个新的访问令牌。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.