Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: graceful refresh token rotation #3860

Merged
merged 8 commits into from
Oct 21, 2024

Commits on Oct 15, 2024

  1. feat: graceful refresh token rotation

    This patch adds a configuration flag which enables graceful refresh token rotation. Previously, refresh tokens could only be used once. On reuse, all tokens of that chain would be revoked.
    
    This is particularly challenging in environments, where it's difficult to make guarantees on synchronization. This could lead to refresh tokens being sent twice due to some parallel execution.
    
    To resolve this, refresh tokens can now be graceful by changing `oauth2.grant.refresh_token.grace_period=10s` (example value). During this time, a refresh token can be used multiple times to generate new refresh, ID, and access tokens.
    
    All tokens will correctly be invalidated, when the refresh token is re-used after the grace period expires, or when the delete consent endpoint is used.
    
    Closes #1831 #3770
    bill-robbins-ss authored and aeneasr committed Oct 15, 2024
    Configuration menu
    Copy the full SHA
    3d7414e View commit details
    Browse the repository at this point in the history
  2. chore: synchronize workspaces

    aeneasr committed Oct 15, 2024
    Configuration menu
    Copy the full SHA
    ddea1fb View commit details
    Browse the repository at this point in the history
  3. chore: synchronize workspaces

    aeneasr committed Oct 15, 2024
    Configuration menu
    Copy the full SHA
    1119b8d View commit details
    Browse the repository at this point in the history

Commits on Oct 17, 2024

  1. Update driver/config/provider.go

    Co-authored-by: Patrik <[email protected]>
    aeneasr and zepatrik authored Oct 17, 2024
    Configuration menu
    Copy the full SHA
    596ed71 View commit details
    Browse the repository at this point in the history
  2. Update internal/config/config.yaml

    Co-authored-by: Patrik <[email protected]>
    aeneasr and zepatrik authored Oct 17, 2024
    Configuration menu
    Copy the full SHA
    ab220c7 View commit details
    Browse the repository at this point in the history
  3. Update oauth2/fosite_store_helpers.go

    Co-authored-by: Patrik <[email protected]>
    aeneasr and zepatrik authored Oct 17, 2024
    Configuration menu
    Copy the full SHA
    848e63a View commit details
    Browse the repository at this point in the history
  4. chore: minor improvements

    zepatrik committed Oct 17, 2024
    Configuration menu
    Copy the full SHA
    f7d43a1 View commit details
    Browse the repository at this point in the history

Commits on Oct 18, 2024

  1. chore: synchronize workspaces

    aeneasr committed Oct 18, 2024
    Configuration menu
    Copy the full SHA
    eb25b98 View commit details
    Browse the repository at this point in the history