Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How to change the parameter of timeout ? #43

Open
7qi opened this issue Dec 1, 2021 · 1 comment
Open

How to change the parameter of timeout ? #43

7qi opened this issue Dec 1, 2021 · 1 comment
Labels
question Further information is requested

Comments

@7qi
Copy link

7qi commented Dec 1, 2021

Hi
When we use this OIDC, we found the oidc will become timeout,
but we can not change the Expiration time neither know when it become expire.
We set something like this:
keyval_zone zone=oidc_id_tokens:1M state=/var/log/nginx/oidc_id_tokens.json timeout=1h sync;
keyval_zone zone=refresh_tokens:1M state=/var/log/nginx/refresh_tokens.json timeout=1h sync;
But it doesn't work.
It would helpful if someone could tell me how to set the Expiration time.

@lcrilly
Copy link
Contributor

lcrilly commented Dec 1, 2021

Hello. If I understand you correctly, you wish to control the expiration time of the id_token (JWT). This is part of your IdP configuration, not part of the NGINX Plus configuration.

Reducing the timeout= parameter of the keyval zone for oidc_id_tokens will cause NGINX Plus to 'forget' about the token but typically the IdP issues a cookie that will silently re-authenticate the user when this happens.

@tippexs tippexs added the question Further information is requested label Dec 8, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
question Further information is requested
Projects
None yet
Development

No branches or pull requests

3 participants