-
MSAL client typeConfidential Problem StatementAs we work to harden our resources, one thing we've been investigating is token lifetime. We found that when we request a token using MSAL's acquire_token_for_client, we get back a token with a lifetime of one day. We'd really like to trim this back to 1-2 hours, but there seems to be no option to do so in MSAL/ConfidentialClientApplication. Is there a plan to address this in the future, or is token lifetime managed some other way? Proposed solutionNo response |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Token lifetime is typically controlled by policy, not by how you call an sdk. |
Beta Was this translation helpful? Give feedback.
Token lifetime is typically controlled by policy, not by how you call an sdk.
https://learn.microsoft.com/en-us/entra/identity-platform/configurable-token-lifetimes